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DOE MANAGEMENT AND OVERSIGHT OF ITS 
NUCLEAR WEAPONS COMPLEX: LESSONS OF 
THE Y-12 SECURITY FAILURE 


WEDNESDAY, MARCH 13, 2013 

House of Representatives, 

Subcommittee on Oversight and Investigations, 

Committee on Energy and Commerce, 

Washington, DC. 

The subcommittee met, pursuant to call, at 10:10 a.m., in room 
2322 of the Rayburn House Office Building, Hon. Tim Murphy 
(chairman of the subcommittee) presiding. 

Members present: Representatives Murphy, Burgess, Harper, 
Gardner, Johnson, Barton, Upton (ex officio), DeGette, Braley, 
Lujan, Tonko, Green, and Waxman (ex officio). 

Staff present: Carl Anderson, Counsel, Oversight; Charlotte 
Baker, Press Secretary; Mike Bloomquist, General Counsel; Annie 
Caputo, Professional Staff Member; Karen Christian, Counsel, 
Oversight; Andy Duberstein, Deputy Press Secretary; IGrby How- 
ard, Legislative Clerk; Peter Kielty, Deputy General Counsel; Peter 
Spencer, Professional Staff Member, Oversight; Tiffany Benjamin, 
Democratic Senior Counsel; Brian Cohen, Democratic Staff Direc- 
tor, Oversight and Investigations, and Senior Policy Advisor; Eliza- 
beth Letter, Democratic Assistant Press Secretary; and Stephen 
Salsbury, Democratic Special Assistant. 

OPENING STATEMENT OF HON. TIM MURPHY, A REPRESENTA- 
TIVE IN CONGRESS FROM THE COMMONWEALTH OF PENN- 
SYLVANIA 

Mr. Murphy. Good morning. We convene this hearing to continue 
the committee’s examination of Department of Energy’s manage- 
ment and oversight of its nuclear weapons complex, three national 
weapons laboratories and five production and testing facilities. 
These eight sites are responsible for the stewardship of our Na- 
tion’s nuclear weapons stockpile. 

DOE, through its National Nuclear Security Administration, or 
NNSA, spends billions of dollars each year performing hazardous 
operations to maintain and secure nuclear weapons and weapons 
materials. This work is performed by contractors at the Depart- 
ment’s nuclear weapons sites under the supervision of federal offi- 
cials and requires strict adherence to strong safety standards. The 
supremely sensitive nature of the materials and technologies also 
requires the Department to ensure an extraordinary level of secu- 
rity to safeguard these nuclear sites and operations. 

( 1 ) 
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Our attention today will focus mainly on the lessons for the De- 
partment from the security and oversight failures that occurred 
last summer at the Y-12 National Security Complex, in Oak Ridge, 
Tennessee, and what DOE is doing to address these lessons. 

At its hearing this past September, this subcommittee began to 
examine preliminary information about the failures at Y-12. We 
learned how these failures allowed three protestors at around 4:20 
a.m. one morning last July to penetrate security fences and detec- 
tion systems and deface the walls of the facility storing highly en- 
riched uranium. We learned about inexcusable maintenance prob- 
lems and compensatory security measures to work around broken 
equipment and chronic false alarms. We learned about the inad- 
equate response by the protective guard force. And most to the 
point of our hearing today, we learned about the failure of con- 
tractor governance and federal oversight to identify and correct the 
multiple early indicators of Y-12’s security, maintenance, and com- 
munications systems breakdowns. 

The DOE Inspector General’s testimony at that hearing revealed 
that federal site officials did not do anything to address security 
maintenance backlogs because NNSA’s contractor governance sys- 
tem meant “they could no longer intervene.” This perhaps is the 
most incomprehensible aspect of this troubling situation. It appears 
that, due to a “hands off’ federal contracting policy, we had ineffec- 
tive federal security oversight at Y-12, and potentially at other 
sites around the complex. 

Information produced since September confirms that a strong 
oversight approach to security has not been paramount at DOE, 
particularly since the Department instituted certain reforms to its 
oversight in 2009 and 2010. The stated purpose of these reforms 
was to give contractors flexibility to tailor and implement safety 
and security programs “without excessive federal oversight or over- 
ly prescriptive departmental requirements.” Whatever the intent, 
the reforms in practice were interpreted by federal site officials to 
mean they couldn’t intervene when security problems arose. 

We will discuss today the findings of a revealing Task Force as- 
sessment, which was commissioned in response to Y-12 and re- 
leased to the administrator in November. Led by Air Force Briga- 
dier General Sandra Finan, who will testify on the first panel this 
morning, the Task Force found that issues at Y-12 were part of a 
larger pattern of deficiencies in NNSA’s security-related functions 
and activities across board. Notably, the Task Force found no clear 
lines of accountability at NNSA, and broken security policy process, 
an “eyes on, hands off’ governance approach that weakened federal 
oversight, and a federal organization “incapable of performing effec- 
tive security performance assessment” of the contractors operating 
the sites. 

We will hear testimony from GAO on our second panel that 
many of these deficiencies are identical to those identified at NNSA 
10 years ago. It appears the Department instituted reforms that ac- 
tually may have exacerbated the deficiencies, turning “eyes on, 
hands off’ into eyes closed, hands off. 

Deputy Secretary Poneman and acting NNSA Administrator Mil- 
ler I trust will explain to us today how and when the agency will 
implement the Task Force’s recommendations and exactly how they 
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will communicate clear and appropriate priorities for safety and se- 
curity in their governance of the sites. Let me welcome you both, 
and General Finan. 

Our second panel provides broader perspective on security cul- 
ture at the Department. Along with GAO, we will hear from Gen- 
eral Donald Alston and former NRC Chairman Richard Meserve, 
two of three contributors to an analysis requested by the Secretary 
of Energy about the physical security structure at the DOE. 

The experience and perspective of these witnesses should help us 
to put the security deficiencies in the broader context of the over- 
sight and management challenges confronting DOE. In the end we 
should identify a path forward for the Department to ensure strong 
oversight and zero tolerance for failures. The risks to millions of 
people, and indeed geopolitics are too important for anything less. 

[The prepared statement of Mr. Murphy follows:] 

Prepared statement of Hon. Tim Murphy 

Good Morning. We convene this hearing to continue the Committee’s examination 
of the Department of Energy’s management and oversight of its nuclear weapons 
complex — three national weapons laboratories and five production and testing facili- 
ties. These eight sites are responsible for the stewardship of our nation’s nuclear 
weapons stockpile. 

DOE, through its National Nuclear Security Administration (or NNSA), spends 
billions of dollars each year performing hazardous operations to maintain and se- 
cure nuclear weapons and weapons materials. This work is performed by contractors 
at the Department’s nuclear weapons sites under the supervision of federal officials 
and requires strict adherence to strong safety standards. The supremely sensitive 
nature of the materials and technologies also requires the Department to ensure an 
extraordinary level of security to safeguard these nuclear sites and operations. 

Our attention today will focus mainly on the lessons for the Department from the 
security and oversight failures that occurred last summer at the Y-12 National Se- 
curity Complex, in Oak Ridge Tennessee — and what DOE is doing to address these 
lessons. 

At its hearing this past September, this Subcommittee began to examine prelimi- 
nary information about the failures at Y-12. We learned how these failures allowed 
three protestors at around 4:20 a.m. one morning last July to penetrate security 
fences and detection systems and deface the walls of the facility storing highly en- 
riched uranium. 

We learned about inexcusable maintenance problems and “compensatory” security 
measures to work around broken equipment and chronic false alarms. We learned 
about the inadequate response by the protective guard force. 

And most to the point of our hearing today, we learned about the failure of con- 
tractor governance and Federal oversight to identify and correct the multiple early 
indicators of Y-12’s security, maintenance, and communications systems break- 
downs. 

The DOE Inspector General’s testimony at that hearing revealed that federal site 
officials did not do anything to address security maintenance backlogs because 
NNSA’s contractor governance system meant “they could no longer intervene.” This 
perhaps is the most incomprehensible aspect of this troubling situation. It appears 
that, due to a “hands off’ federal contracting policy, we had ineffective federal secu- 
rity oversight at Y-12 — and potentially at other sites around the complex. 

Information produced since September confirms that a strong oversight approach 
to security has not been paramount at DOE, particularly since the Department in- 
stituted certain reforms to its oversight in 2009 and 2010. The stated purpose of 
these reforms was to give contractors flexibility to tailor and implement safety and 
security programs “without excessive federal oversight or overly prescriptive depart- 
mental requirements.” Whatever the intent, the reforms in practice were interpreted 
by federal site officials to mean they couldn’t intervene when security problems 
arose. 

We will discuss today the findings of a revealing Task Force assessment, which 
was commissioned in response to Y-12 and released to the Administrator in Novem- 
ber. Led by Air Force Brigadier General Sandra Finan, who will testify on the first 
panel this morning, the Task Force found that issues at Y-12 were part of a larger 
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pattern of deficiencies in NNSA’s security-related functions and activities across 
board. 

Notably, the Task Force found no clear lines of accountability at NNSA, a broken 
security policy process, an “eyes on, hands off’ governance approach that weakened 
Federal oversight, and a federal organization “incapable of performing effective se- 
curity performance assessment” of the contractors operating the sites. 

We will hear testimony from GAO on our second panel that many of these defi- 
ciencies are identical to those identified at NNSA ten years ago. It appears the De- 
partment instituted reforms that actually may have exacerbated the deficiencies — 
turning “eyes on, hands off’ into eyes closed, hands off. 

Deputy Secretary Poneman and acting NNSA Administrator Miller I trust will ex- 
plain to us today how and when the agency will implement the Task Force’s rec- 
ommendations and exactly how they will communicate clear and appropriate prior- 
ities for safety and security in their governance of the sites. Let me welcome you 
both, and General Finan. 

Our second panel provides broader perspective on security culture at the Depart- 
ment. Along with GAO, we will hear from General Donald Alston and former NRC 
Chairman Richard Meserve, two of three contributors to an analysis requested by 
the Secretary of Energy about the physical security structure at the DOE. 

The experience and perspective of these witnesses should help us to put the secu- 
rity deficiencies in the broader context of the oversight and management challenges 
confronting DOE. In the end we should identify a path forward for the Department 
to ensure strong oversight and zero tolerance for failures. The risks to millions of 
people, and indeed geopolitics are too important for anything less. 

# # # 

Mr. Murphy. I would now like to recognize Ranking Member 
Diana DeGette for her opening statement. 

OPENING STATEMENT OF HON. DIANA DEGETTE, A REP- 
RESENTATIVE IN CONGRESS FROM THE STATE OF COLO- 
RADO 

Ms. DeGette. Thank you, Mr. Chairman. 

Mr. Chairman, as you said, a little over 7 months ago, an 82- 
year-old nun and two middle age men breached the security perim- 
eter surrounding the highly-enriched uranium facility at the Y-12 
National Security Complex in Oak Ridge, Tennessee. In the wake 
of that incident, this committee had a hearing toward exactly how 
such an absurd and dangerous breach of security could happen. 
Today, I want to thank you for having this follow-up hearing to 
learn what has happened to address the security breakdowns that 
resulted in the breach, and to make sure that something like that 
never happens again. 

I want to thank you, Mr. Chairman, for continuing our long- 
standing bipartisan interest in this subcommittee in ensuring that 
our nuclear facilities are safe and secure. 

Our past oversight over the nuclear complex has made a signifi- 
cant difference, raising standards for worker safety, ensuring lab 
safety, ensuring security standards remain accountable to those 
who work within the labs and who live nearby, and forcing NNSA 
to make significant changes when things go awry. But I got to tell 
you, as I have told you before, both on and off the record, every few 
years we go through this same thing. There is an incident, there 
is an aggressive response from NNSA, time passes without an inci- 
dent, and everybody begins to relax. Labs start to complain about 
overly burdensome paperwork and oversight. In response, expecta- 
tions and rules are relaxed, and then, of course, without fail, an- 
other incident occurs. I am tired of this pattern and we should all 
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be tired of this pattern, because it really does affect our national 
security. 

Today, I am hoping to hear how NNSA and DOE have responded 
to last year’s call to action, not just at Y-12, but across the NNSA 
complex. But more importantly, I want to hear what they are doing 
to ensure that we don’t have to have any more hearings about se- 
curity breaches or safety incidents at these sites. I guess my view 
is, it is time to break this pattern. 

I want to commend the agencies for acting promptly to address 
the issues exposed at Y-12 in the wake of the July 28 breach. How- 
ever, I continue to be deeply concerned about oversight within 
NNSA. Last month, GAO again released its high risk list, identi- 
fying agencies and program areas that are at high risk due their 
vulnerabilities to fraud, waste, abuse, and mismanagement. Just as 
it has been since 1990, contract management at NNSA is on this 
list. Assessments conducted after last year’s security breach show 
that NNSA dubious honor is well-deserved. A February, 2013, DOE 
Inspector General report described a “eyes on, hands off’ approach 
to contractor oversight, meaning federal employees felt they could 
monitor but not intervene in contractor activities, even if they sus- 
pected an issue. Recent assessments conducted by DOE’s Office of 
Health, Safety, and Security showed contractor communication 
problems, both between different contractors at the Y-12 site, and 
between the contractor and federal employees at Y-12, and other 
independent experts observed a Y-12 culture that completely failed 
to adequately focus on security. 

As terror effects become more real, and as our enemies become 
more sophisticated, we just can’t afford to take this “eyes on, hands 
off’ approach to security. Tens of thousands of people work at these 
labs and facilities, and we owe it to them and to the communities 
around the facilities and the American people to ensure that they 
are safe and secure. To do that, we have got to closely examine and 
monitor the nuclear complex, promote transparency when it comes 
to how DOE and NNSA are using their resources, and demand ac- 
countability from everybody involved. We have to insist that stand- 
ards are simply never relaxed because people don’t like filling out 
paperwork. In short, we have to demand more. 

There has been no shortage of assessments of what should be 
done for the complex, and in the coming months, I am sure we can 
expect more of these. As we move forward, we have to continue to 
make sure that DOE and NNSA are keeping nuclear safe sites safe 
and adapting and responding to the ever-changing security chal- 
lenges at the nuclear complex. 

So Mr. Chairman, I am happy that you are continuing the grant 
tradition of this subcommittee in oversight of DOE and NNSA, and 
I look forward to working with you as we move along in the future. 
I yield back. 

Mr. Murphy. I thank the Congresswoman from Colorado. 

I now recognize the chairman of the full committee, Mr. Upton, 
for an opening statement. 

OPENING STATEMENT OF HON. FRED UPTON, A REPRESENTA- 
TIVE IN CONGRESS FROM THE STATE OF MICHIGAN 

Mr. Upton. Well thank you, Mr. Chairman. 
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Today’s hearing represents another important step in this com- 
mittee’s ongoing oversight to ensure that the Department of Ener- 
gy’s management of nuclear security enterprise can successfully 
protect taxpayer dollars, ensure public health and worker safety, 
and in fact, safeguard our national security assets. We know from 
our past work, as well as from the recent and very troubling secu- 
rity failures at Y-12, that management reform is necessary to en- 
sure safe and secure operations. The challenge has been learning 
the right lesson from past failures, and then successfully imple- 
menting the right fixes. 

Time and again over the last 14 years, we have witnessed dra- 
matic failures in safety and security, as well as taxpayer waste 
across the nuclear complex. Despite that poor track record, in ’09 
DOE proposed increased economy and less oversight as the appro- 
priate corrective actions. We know, though, from past experiences 
and the Y-12 breach that strong and consistent federal manage- 
ment bolstered by truly independent oversight is, in fact, nec- 
essary. DOE leadership must be clear that safety and security 
come first. They go hand in hand. This is the lesson that we have 
learned from the civilian nuclear industry. As safety improves, so 
does performance. Absent an imbedded safety culture, there is ero- 
sion of safety practices, leading to outages, delays, and other oper- 
ational impacts. The same is true for security. 

The Y-12 security breach demonstrated not only a failure at the 
site, but also a failure of DOE and NNSA management. We can 
trace some of that failure to the initiative launched by DOE leader- 
ship 3 to 4 years ago to rely more on contractor’s self-assessments 
and define success as productivity gained. Secretary Chu himself 
wanted DOE to be viewed as a “partner and asset,” his words for 
the contractors, sending the signal that oversight of these contrac- 
tors would not be a priority. Members on this committee warned 
the Secretary in 2010 that such initiatives, however well-inten- 
tioned, were misinterpreting the lessons and the past and could, in 
fact, backfire, and that track record speaks for itself 

As this committee, with oversight responsibility for DOE, we 
must ensure that current and future DOE leadership learns the 
right lessons. That starts today when we hear about the plans to 
fix and sustain improvements in safety and security oversight. 

I yield the balance of my time to Dr. Burgess. 

[The prepared statement of Mr. Upton follows:] 

Prepared statement of Hon. Chairman Fred Upton 

Today’s hearing represents another important step in this committee’s ongoing 
oversight to ensure the Department of Energy’s management of the nuclear security 
enterprise can successfully protect taxpayer dollars, ensure public health and work- 
er safety, and safeguard our national security assets. 

We know from both our past work, as well as from the recent and very troubling 
security failures at Y-12, that management reform is necessary to ensure safe and 
secure operations. The challenge has been learning the right lessons from past fail- 
ures and then successfully implementing the right fixes. 

Time and again over the past 14 years, we have witnessed dramatic failures in 
safety, security, and taxpayer waste across the nuclear complex. Despite this poor 
track record, in 2009 DOE proposed increased autonomy and less oversight as the 
appropriate corrective actions. 
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We know, though, from past experience and the Y-12 breach that strong and con- 
sistent federal management, bolstered by truly independent oversight, is necessary. 
DOE leadership must be clear that safety and security come first. 

Safety and performance go hand-in-hand. This is the lesson we’ve learned from 
the civilian nuclear industry. As safety improves, so does performance. Absent an 
embedded safety culture, there is erosion of safety practices, leading to outages, 
delays, and other operational impacts. The same is true for security. 

The Y-12 security breach demonstrated not only a failure at the site, but also a 
failure of DOE and NNSA management. We can trace some of this failure to the 
initiatives launched by DOE leadership three and four years ago to rely more on 
contractor self-assessments, to reduce “burdensome” oversight, and to define success 
as productivity gains. Secretary Chu himself wanted DOE to be viewed as a “part- 
ner and asset” for the contractors, sending a signal that oversight of these contrac- 
tors would not be a priority. 

Members on this committee warned the Secretary in 2010 that such initiatives — 
however well-intentioned — were misinterpreting the lessons of the past and could 
backfire. DOE’s track record speaks for itself. 

As the committee with oversight responsibility for DOE, we must ensure that cur- 
rent and future DOE leadership learn the right lessons. This will start today, when 
DOE/NNSA explains that it has serious plans for fixing and sustaining improvemes 
in safety and security oversight. 


# # # 


OPENING STATEMENT OF HON. MICHAEL C. BURGESS, A 
REPRESENTATIVE IN CONGRESS FROM THE STATE OF TEXAS 

Mr. Burgess. I thank the chairman of the full committee — chair- 
man of the subcommittee for calling this important hearing. This 
is an important follow-up on the committee’s work in the last Con- 
gress into the astonishing security lapses that occurred at one of 
our most important, and purportedly most secure nuclear weapons 
facilities in the country. 

You know, you look at the continuum, the range of failure and 
it goes from totally unacceptable to an abject failure, and this is 
at one of our country’s most important facilities that stores highly 
enriched uranium for our defenses and for our national security. At 
last September’s hearing, I voiced my concern over the lack of ac- 
countability. We need to know who at Department of Energy was 
held accountable. Who lost their job? Who lost their job because of 
this epic failure of security and oversight? 

Now, General Finan’s task force, I think, has put it very suc- 
cinctly that there is a pervasive culture of tolerating the intolerable 
and accepting the unacceptable. I fear that statement has really be- 
come the operational motto of the Executive Branch, where failure 
after failure is met with a shrug and not much more. Had this inci- 
dent been perpetrated by someone with more sinister motives, the 
break-in could have had catastrophic results for that region and for 
our Nation. So I continue to be concerned that our security at our 
Nation’s most critical facilities is not being given the priority that 
it deserves. 

Chairman Murphy and I met with General Finan, and I thank 
you. General, for taking the time for that meeting — this was a 
month ago — to discuss some of the observations that her task force 
has made in the security lapses and the oversight failures at 
NNSA. So certainly, we look forward to hearing from you this 
morning as to where the NNSA stands in its oversight of these fa- 
cilities. 
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This investigation is a prime example of the good work that this 
committee can do when it works in a bipartisan manner. The secu- 
rity of our Nation’s weapons facilities is not an issue that divides 
or should divide along party lines. We are all in favor of safe, se- 
cure areas where our nuclear stockpiles can be held, ready to pro- 
tect our Nation, and safe from predators. 

With that, Mr. Chairman, I will yield back. 

Mr. Murphy. Thank the gentleman. I will now recognize for 5 
minutes the ranking member of the full committee, Mr. Waxman. 

OPENING STATEMENT OF HON. HENRY A. WAXMAN, A REP- 
RESENTATIVE IN CONGRESS FROM THE STATE OF CALI- 
FORNIA 

Mr. Waxman. Thank you, Mr. Chairman, for recognizing me and 
for holding this hearing. 

The Y-12 incident was embarrassing for DOE and NNSA, the 
National Nuclear Security Administration. It exposed serious 
issues within the security organization at NNSA. I appreciate our 
witnesses being here today, and I hope they will help us identify 
and address these concerns. 

The security concerns we will hear about today must be ad- 
dressed. We cannot let our nuclear facilities become targets for our 
foreign enemies and terrorists. We need to invest in the safety and 
security of these facilities, both financially and by ensuring they 
have a culture that is focused on keeping our nuclear legacy mate- 
rials and the people who work with them safe and secure. 

I appreciate DOE’s actions in the wake of the Y-12 incident. The 
Department has taken this incident seriously and developed a 
thoughtful approach to addressing concerns that have been identi- 
fied, but there is still more work left to be done. DOE needs to en- 
sure that it exercises strong oversight over both its contractors and 
its federal employees at NNSA sites, and as noted by General 
Finan today, DOE needs to ensure that there is a clear line of au- 
thority from the Secretary down to the contractor, security guards 
at every site. 

Over the years, many people have advocated many different 
structures for NNSA, but the assessments made after the Y-12 in- 
cident show that the problem is not too much DOE efforts over- 
sight, it is too little. The problem is that contractors didn’t take 
their responsibilities to the government or their workers seriously. 
The federal employees failed to exercise appropriate authority over 
the contractor counterparts, and that NNSA’s culture didn’t ade- 
quately focus on security. 

These problems can be resolved by effective oversight by DOE by 
requiring that contractors become accountable and transparent, 
and by ensuring that the federal officials who oversee these con- 
tractors take a hands on approach to oversight. 

In the past year, some have suggested that NNSA needs more 
autonomy. In fact, last year’s House-passed National Defense Au- 
thorization Act included language stripping DOE’s authority over 
some NNSA sites. Given what we have seen in the last 7 months, 
that approach makes absolutely no sense. The Y-12 breach made 
it abundantly clear that NNSA is not doing enough on its own. All 
the findings and recommendations that have come from inde- 
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pendent evaluators of the Y-12 breach, including NNSA’s own task 
force, show that NNSA needs more oversight, not less. NNSA sites 
house some of our most dangerous nuclear assets. We need vig- 
orous oversight by DOE to ensure that these nuclear materials are 
appropriately protected. 

Mr. Chairman, again, thank you for holding this hearing. I look 
forward to more opportunities to check in on NNSA’s progress. I 
yield back the balance of my time. 

Mr. Murphy. The vice chairman yields back, and now we will go 
over our witnesses today. 

With us today is Brigadier General, United States Air Force, 
Sandra Finan. I hope I am pronouncing that right. I believe I am, 
right? Thank you for being here. She is the Commander of the Air 
Force Nuclear Weapons Center and former Acting Chief of Defense 
Nuclear Security, National Nuclear Security Administration. 

Also joining her is Daniel B. Poneman, Deputy Secretary, U.S. 
Department of Energy. Thank you so much for being with us today, 
sir, and also accompanied by Neile Miller, the Acting Administrator 
of NNSA. I hope I have all the title correct. 

As you know, the testimony you are about to give is subject to 
Title XVIII, Section 1001 of the United States Code. When holding 
an investigative hearing, this committee has a practice of taking 
testimony under oath. Do you have any objections to testifying 
under oath? 

The chair then advises you that under the rules of the House and 
rules of the committee, you are entitled to be advised by counsel, 
if you desire to be advised by counsel during your testimony today. 
OK, they all say no. 

Then in that case, if you would please rise and raise your right 
hand, and I will swear you in. 

[Witnesses sworn.] 

Mr. Murphy. Thank you. Noting for the record that all the wit- 
nesses responded in the affirmative, I now call upon each of them 
to give a 5-minute summary and their written statement. 

Starting off with you. General Finan, thank you for being here 
today. 

TESTIMONY OF SANDRA E. FINAN, BRIGADIER GENERAL, 
USAF, COMMANDER, AIR FORCE NUCLEAR WEAPONS CEN- 
TER AND FORMER ACTING CHAIRMAN OF DEFENSE NU- 
CLEAR SECURITY, NATIONAL NUCLEAR SECURITY ADMINIS- 
TRATION (NNSA); AND DANIEL B. PONEMAN, DEPUTY SEC- 
RETARY, U.S. DEPARTMENT OF ENERGY, ACCOMPANIED BY 
NEILE L. MILLER, ACTING UNDERSECRETARY FOR NUCLEAR 
SECURITY AND ACTING ADMINISTRATOR, NNSA 

TESTIMONY OF SANDRA E. FINAN 

General Finan. Chairman Murphy, Ranking Member DeGette, 
distinguished members of the committee, thank you for the oppor- 
tunity to discuss the study I conducted on the National Nuclear Se- 
curity Administration’s federal security organization 

Mr. Murphy. Could you pull your mike closer to yourself there, 
if it is on, too? 

General Finan. Is that better? 
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Mr. Murphy. Yes, much better. Thank you. 

General Finan. OK. 

Thank you for the opportunity to discuss the study I conducted 
on the National Nuclear Security Administration’s federal security 
organization and assessment model. Although I am no longer as- 
signed to the NNSA, I am pleased to share our observations based 
on our 90-day study. 

In the aftermath of the July 28, 2012, security incident at the 
National Nuclear Security Administration’s Y-12 National Security 
Complex, the leadership of the NNSA and the Department of En- 
ergy took action to address the security failures at Y-12. The ini- 
tial information gathered revealed that the issues at Y-12 were 
part of a larger pattern of security program management defi- 
ciencies within NNSA. These security issues prompted the NNSA 
administrator to commission a task force to analyze the current 
federal NNSA security organizational structure and security over- 
sight model and recommend possible improvements. The NNSA Ad- 
ministrator directed the Task Force to analyze the current NNSA 
security organizational structure and recommend possible improve- 
ments, and to analyze the current NNSA security oversight model 
and mechanisms to determine what seams existed and what struc- 
tures could be implemented to better ensure that the issues are 
found and fixed before they become problems. 

While other reviews were aimed at diagnosing the root causes of 
the Y-12 event, the NNSA administrator’s direction called for this 
Task Force to focus on the a path forward within the federal NNSA 
organization. Under my leadership, the task force consisting of 
NNSA, DOE, and military specialists conducted extensive docu- 
ment reviews and interviewed federal managers and staff as well 
as a selection of contractor security managers and others across the 
NNSA security organization. The task force collected and analyzed 
information, identified issues, and suggested a revised organiza- 
tional structure and assessment model. 

While we highlighted negative aspects of the NNSA security or- 
ganization and assessment model, the task force found many great 
people on the NNSA security staffs. They are clearly dedicated, 
skilled, and hard-working and want to get the security mission 
done right. Unfortunately, NNSA security personnel have seen 
themselves thwarted by lack of management support and feel ob- 
structed by some of their peers. Their difficulties were compounded 
by the absence of a workforce strategy to recruit, retain, and de- 
velop a cadre of talented, knowledgeable and experienced security 
professionals. Thus, it is all the more encouraging that these per- 
sonnel, almost without exception, genuinely care about doing good 
work. Their continued strong desire to build a successful security 
organization is a hopeful sign for the future. 

Mr. Chairman, with your permission, I will submit the remain- 
der of my testimony for the record. It contains the findings of the 
task force. 

[The prepared statement of General Finan follows:] 
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Introduction 

Chairman Murphy, Ranking Member Degette, distinguished Members of the Committee, thank 
you for the opportunity to discuss the study I conducted on the National Nuclear Security 
Administration’s (NNSA) federal security organization and assessment model. Although I am 
no longer assigned to the NNSA, I am pleased to share our observations based on our 90 day 
study. 

In the aftermath of the July 28, 2012 security incident at the National Nuclear Security 
Administration’s Y-12 National Security Complex, the leadership of the NNSA and the 
Department of Energy (DOE) took action to address the security failures at Y-12. The initial 
information gathered revealed that issues at Y-12 were part of a larger pattern of security 
program management deficiencies within the NNSA. These security issues prompted the NNSA 
Administrator to commission a Task Force to analyze the current Federal NNSA security 
organizational structure and security oversight model and recommend possible improvements. 
The NNSA Administrator directed the Task Force to: 

• Analyze current NNSA security organizational structure and recommend possible 
improvements that would improve operational focus, oversight, and culture sustainment. 

• Analyze current NNSA security oversight model and mechanisms to determine what 
seams exist and what structures could be implemented to better ensure that the issues are 
found and fixed before they become problems. 

While other reviews were aimed at diagnosing the root causes of the Y-12 event, the NNSA 
Administrator’s direction called for this Task Force to focus on the “path forward” within the 
Federal NNSA organization. Under my leadership, the Task Force consisting of NNSA, DOE, 
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and military specialists conducted extensive document reviews and interviewed Federal 
managers and staff as well as a selection of contractor security managers and others across the 
NNSA security organization. The Task Force collected and analyzed information, identified 
issues, and suggested a revised organizational structure and assessment model. 

While we highlighted negative aspects of the NNSA security organization and assessment 
model, the Task Force found many great people on the NNSA security staffs. They are clearly 
dedicated, skilled, and hard-working and want to get the security mission done right. 
Unfortunately, NNSA security personnel have seen themselves thwarted by lack of management 
support and feel obstructed by some of their peers. Their difficulties were compounded by the 
absence of a workforce strategy to recruit, retain, and develop a cadre of talented, knowledgeable 
and experienced security professionals. Thus, it is all the more encouraging that these personnel, 
almost without exception, genuinely care about doing good work. Their continued strong desire 
to build a successful security organization is a hopeful sign for the future. 

Summary Findings 

The Task Force noted significant deficiencies in security organization, oversight, and culture 
sustainment throughout the NNSA security organizations. In the NNSA security organizations, 
line management authority was ill-defined and claimed by multiple Federal NNSA organizations. 
On the one hand, the “Federal field organizations” (federal site offices and the nuclear 
production office which oversees the management and operating contracts) exercised line 
management authority over the site security contractors via the contract management structure. 
On the other hand, the NNSA Headquarters security organization asserted that it also had such 
authority. Absent clearly defined lines of authority, many individuals asserted authority, while 
correspondingly few have assigned responsibility. This lack of clear lines of authority 



contributed to a widespread practice of decision-making by consensus. When consensus failed, 
organizational elements acted independently or not at all, which undermined effective 
implementation of the security program. 

The Task Force further noted a significant gap in the current NNSA security organizational 
structure. At the strategic level the NNSA Headquarters organization had been ineffective and 
had intervened in field tactical execution. The Federal field organizations had been ineffective in 
performing their tactical responsibilities for executing the security program and had intervened in 
strategic matters. Additionally, there had not been a clearly identified operationally-focused 
organization that bridged the gap between strategic and tactical responsibilities and addressed 
standardization, field execution, and multi-site analysis. 

The Task Force found a weak security performance assessment model. It found that NNSA 
relied overwhelmingly upon Federal staff simply reviewing contractor-provided data, rather than 
effectively assessing performance itself. At the same time, misinterpretation of the DOE Safety 
and Security Reform Plan resulted in less stringent independent oversight of security operations. 
As a result of numerous interviews, the Task Force also observed that potentially critical 
management information was not being reported clearly to the appropriate decision makers. 

As concerning as these structural and assessment issues might be, the most striking result of this 
review falls in the area of culture sustainment. It quickly became evident that the Task Force 
findings closely resembled those presented in numerous prior reports. While NNSA has 
attempted to correct some identified issues over the years, it has not adequately emphasized 
effective security mission performance. In recent years, NNSA security leaders have chosen to 
emphasize security cost containment to the detriment of security program execution. The idea 
that the requirements for security performance effectiveness are subordinated to cost concerns 
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had become a prevailing concept in the NNSA security community. This emphasis had become 
endemic throughout the NNSA security culture, so much so that fundamental facility protection 
issues such as the protection of operational capabilities came to be regarded as too expensive and 
therefore “out of bounds” for analysis. The NNSA security culture had focused on fiscal 
limitations over effective performance. This resulted in an environment in which deficiencies 
were worked at the margins rather than management addressing core issues. 

These issues underscored the critical role of effective leaders. While outside the charter of this 
Task Force, it must be acknowledged that leadership plays the key role in mission 
accomplishment. The Task Force recognized that effective leadership may compensate for 
structural deficiencies within an organization; however, restructuring alone cannot overcome 
leadership shortcomings. The best assessment model is useless if leaders fail to effectively 
implement it. Additionally, the assessment model will not be effective unless leaders 
consistently demand comprehensive, unbiased information. NNSA must take ownership of its 
history of security failures. Leadership must take bold and enduring actions if this pattern is to 
be broken. 

NNSA Organizational Model 

The existing NNSA security organizational structure was convoluted and ineffective. The Task 
Force observed that lines of authority in virtually every organizational function were divided. 

The NNSA security function was not well organized or effectively staffed and the NA-70 policy 
development and implementation process was sub-standard. While the Chief of Defense Nuclear 
Security is the Cognizant Security Authority (CSA), this responsibility has been unevenly 
delegated and was open to inconsistent interpretation. Security staffs were responsible to 
multiple lines of authority and for some functions may not be responsible to anyone. The most 



fundamental issues arose from the relationship between NA-70 and the Federal field 
organizations. NA-70 believed that it had line management authority over the security elements 
within the Federal field organizations. However, the managers of these field organizations had 
been formally assigned line management authority. The NNSA Act states that the Chief of 
Defense Nuclear Security role includes “the development and implementation of security 
programs”. The current interpretation of this provision has been a source of ambiguity due to the 
mixing of line and staff responsibilities. 

Roles and responsibilities were either undefined or not followed. The Task Force identified 
numerous occasions across the NNSA security organizations where individuals were not allowed 
to perform assigned duties or assumed roles and responsibilities nominally assigned to others. 
The confusion of roles and responsibilities was evident in NA-70, within field organizations, and 
between NA-70 and the field. For example, the approved mission and function statements for 
the two major divisions within NA-70 have little apparent relationship to the way these offices 
operated and how they interacted with each other or with the NA-70. Within field organizations, 
the Task Force noted a number of instances where management precluded staff from performing 
the assigned roles of their position and/or assigned personnel to unrelated duties. At times, NA- 
70 acted as a formal line management organization, and asserted responsibilities that were 
formally assigned to the Federal field security organizations. NA-70 personnel were frequently 
frustrated by site-level resistance to the programmatic direction they provided and Federal field 
security managers were often similarly frustrated when NA-70 used its budget authority, its 
control over the policy process, and other activities to inject itself into what the sites regard as 
their line management decision-making process. 
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There were no clear lines of authority. There were overlapping lines of authority and mixed 
staff and line functions. The CSA function flowed from the NNSA Administrator through the 
Chief of Defense Nuclear Security to the Federal field organizations. Line management 
authority went from the NNSA Administrator through the Associate Administrator for 
Infrastructure and Operations (NA- 00), to the field. However, NA-70 attempted to exert line 
management authority and provided programmatic guidance directly to the Federal field security 
managers. While Federal field organizations administer the contracts governing the actual 
performance of the security mission, NA-70 routinely interacted with the security contractors. 
Furthermore, NA-70, not the line managers, was the primary executer of the NNSA security 
budget. 

The security policy process was sub-standard. The Task Force identified that there was no 
clearly articulated or consistently implemented NNSA security policy process. A major concern 
was the supplanting of DOE Security Orders with generic and less restrictive NNSA policies 
(NAPs). This appeared to be based on a desire to reduce funding demands through a reduction 
of requirements. Additionally, the Task Force noted a desire on the part of some NA-70 senior 
managers to maximize separation from DOE HSS policies and activities. Within NA-70, policy 
and guidance were issued through a variety of formal and informal mechanisms with erratic 
distribution. The Task Force identified that some Federal field organizations were inconsistent 
in their acceptance and application of NA-70 issued policies. Finally, NA-70 policy and 
guidance tended to be vague resulting in widely differing interpretations by field personnel. 

The NNSA Federal security organization was not effectively structured or staffed. While 
there were clearly strategic (Headquarters) and tactical (Federal field organizations and 
contractors) levels, there was little indication of an effective operational element with 
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responsibility for security program functions such as site assistance and standardization of 
program execution. The Task Force also noted that the Federal field organizations structured 
their security functions substantially differently. This resulted in a lack of standardization of 
both organization and execution of the security program. At some sites there was weakening of 
the security function and reduced senior management attention. There were a number of 
personnel issues associated with the security professional staff including the lack of a human 
capital development plan, no career path, and limited mobility. Additionally, the Task Force 
noted an overreliance on support service contractors who primarily assisted the NA-70 
organization. 

Federal Assessment Model 

The Task Force expended considerable effort attempting to describe, understand and analyze the 
current assessment model and mechanisms. 

The failure to adequately assess security system performance and to clearly and unequivocally 
report deficiencies to the appropriate senior managers has been identified as a significant 
contributing cause to the Y-12 security incident. The Task Force focused upon the performance 
assessment process as implemented by Federal field and Headquarters organizations within 
NNSA. Although contractor self-assessments were the first-line elements in the security 
performance assessment process, these were outside the direct scope of the review. 

Strengthening the contractor self-assessment process is an important objective, but cannot 
replace a rigorous Federal assessment process. 

NNSA did not have an adequate security performance assessment process or capability. 

The performance assessment capabilities of Federal security organizations within NNSA were 
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virtually non-existent. Essentially all responsibility for performance assessment was delegated to 
the Federal field organizations. The current Federal field organizations were typically limited to 
“shadowing” contractor self-assessments and/or reviewing the reports these self-assessments 
generated. Moreover, there was a tendency on the part of some field Federal staff to adopt the 
role of defending “their” contractors rather than attempting to objectively assess contractor 
performance. At the Headquarters level, the NA-70 performance assessment function had only 
three full-time Federal staff members. The Task Force noted that the NA-70 assessment process 
was largely confined to the review of submitted paperwork. The result was that there was no 
NNSA Federal organization capable of performing effective security performance assessment. 

The “systems-based” assessment model as implemented was ineffective for security. 
Misinterpretation, and/or misapplication of the DOE Safety and Security Reform Plan, dated 
March 16, 2010, resulted in a weakened Federal security assessment program. In particular, this 
document stated: “Security Performance: Contractors are provided the flexibility to tailor and 
implement security programs in light of their situation and to develop corresponding risk- and 
performance-based protection strategies without excessive Federal oversight or overly- 
prescriptive Departmental requirements.” This guidance was further expanded upon and 
eventually articulated in NAP-21, Transformation Governance and Oversight Initiative. The 
belief arose that ‘eyes on, hands off precluded Federal security staff from conducting 
performance-based assessments of contractors. As a result, most Federal assessment was based 
on paperwork generated by the contractor. This paper-based system of assessment, without 
sufficient performance verification, was inadequate for effective evaluation of security 
operations. 
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NNSA had no clear and consistent performance baseline for security program 
implementation. A performance baseline, set forth in detailed standards and criteria, is the 
keystone of an effective security program. Precisely articulated standards and criteria further 
provide an objective foundation for performance assessment. NNSA did not have the standards 
or criteria necessary to effectively measure security program performance. The absence of such 
standards and criteria diminished the ability to identify potentially significant performance 
deficiencies. The Task Force noted that the lack of standards and criteria had been coupled with 
the widespread notion that contractors must only be told “what” the mission is, not “how” the 
mission is to be accomplished. While this approach may be appropriate in other areas, it was 
ineffective as applied to security programs. Therefore, security tasks were not necessarily 
performed in a manner consistent with NNSA security requirements. 

The current assessment process was biased against criticism. The Task Force noted a distinct 
bias against finding and stating performance criticisms. The NNSA Federal assessment relies 
heavily on contractor self-assessment. While an important and useful tool, contractor self- 
assessments tend to be insufficiently objective. The primary Federal assessment role was 
performed by field staff. Long-term geographic proximity to site contractors can compromise 
the objectivity of these Federal assessors. Moreover, the intermingling of management and 
assessment roles within Federal field organizations can also contribute to less objective 
assessment. The NA-70 Headquarters performance assessment process, being paper-based, 
could not validate the information submitted. Information provided to the Task Force suggested 
that in some instances information considered to be unfavorable was being “watered down” or 
obscured. Furthermore, information was presented that indicate differing opinions were being 
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suppressed by some senior managers in the field and at Headquarters. As a result, NNSA senior 
leadership may not have received all information needed to make quality decisions. 

Recommended Organizational Structure 

Recommend an organizational structure that separates the line function for executing the security 
mission from the Headquarters staff function. Additionally, create an operational-level 
organization that focuses on security implementation and standardization. Distinct roles and 
responsibilities should be associated with tactical, operational, and strategic-level security 
functions. Tactical execution of contract administration occurs at the Federal field organizations. 
Operational implementation and standardization of operations across the security program occurs 
at the NA-00 level. Strategic-level policy guidance, requirements determination, and 
performance assessment occur in Headquarters NNSA, NA-70. 

In order to clarify the line of authority, CSA must flow from the NNSA Administrator, through 
the head of the NA-00, to the Federal field managers, and finally to the designated CSA at field 
sites, with no re-delegations authorized to non-Federal individuals. This authority should follow 
the same path as the line authority. The asserted security line management tie between the Chief 
of Defense Nuclear Security and the security managers in the field should be terminated in order 
to ensure a single, clear line of authority. 

In terms of clarifying line and staff functions, the current NA-70 organization needs to be 
restructured so that it serves solely as a staff organization at the strategic level. Specific 
alignment within the divisions can be varied. The most important change in NA-70 is the stand- 
up of the Performance Assessment Division ~ a new function responsible for assessment of 
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contractor and Federal field organization performance. This is the entity that the Chief of 
Defense Nuciear Security wouid use to verify that security programs are property impiemented. 

A new security operations organizationai level needs to be stood up within the NA-00 structure. 
The responsibilities of this office are to ensure that the policies and guidance provided by the 
NA-70 staff are executed in the field. It will also ensure standardization of security procedures 
across the field locations as well as provide field assistance, and a conduit for field concerns to 
be surfaced to the NA-70 staff. 

Resource planning and budgeting, and project management responsibilities will be realigned 
from NA-70 to the new operational-level organization. This establishes a clear linkage between 
budget formulation and mission execution and establishes an equally clear boundary between 
budget considerations and the formulation of requirements. An expanded 
intelligence/counterintelligence liaison is intended to ensure that Federal security managers get 
needed information and have appropriate ties to law enforcement and intelligence-related 
agencies. 

At the tactical level in the field, the multiple lines of authority are eliminated and direction will 
come from a single line of authority. All authorities will run through the Federal field 
organization manager to the appropriate security manager. The Federal field organization scope 
of duties will include primary contract administrative functions-including reviews of contractor 
reports, analysis, security plans, and other required documentation; partnering with the executing 
contractor; remaining knowledgeable and up-to-date on the content, operations, and effectiveness 
of the contractor's security implementation; alerting management of all concerns related to 
contractor execution of the security mission. 
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This organizational structure will help define and clarify roles and responsibilities and facilitate a 
strong mission focus. It divides resourcing from requirements determination in order to ensure 
that requirements are appropriately stated, weighed against budget resources and decisions made 
on accepting risks at the appropriate level. It provides a single line of authority to those 
operating in the field and maintains an appropriate span of control. 

Recommended Assessment Model 

Recommend a three-tiered assessment process that strengthens the role of Federal security 
assessment within NNSA without diminishing the legitimate need for contractors to maintain 
their own self-assessment capabilities. 

The contractor self-assessment process continues as a first tier in the overall assessment process. 
The primary audience for the contractor self-assessments should be the contractor security 
managers themselves. However, the self-assessments should follow a consistent, program-wide 
format, and be made available for review at all higher levels of management. Contractors should 
be required to identify, report, and resolve security issues-sanctions should come when a higher 
level assessment uncovers problems that the contractor self-assessments fail to identify or 
properly address. Even when an issue is readily resolved and corrective actions are immediate, a 
finding should be issued and the corrective action recorded. Failure to do so inevitably hides 
potential negative trends. Contractor self-assessments should involve active performance testing 
rather than simply relying on work observation and document review-effective security 
performance can only be evaluated through testing. 

The fundamental purpose of Federal security performance assessment is to ensure that 
requirements are properly implemented. Therefore, the primary Federal assessment organization 
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should ultimately report to the Chief of Defense Nuclear Security, who is responsible for 
requirements. This provides independence not only from the contractors, but also from the 
tactical-level Federal field staff whose necessary day-to-day interaction with contractor managers 
and staff risks loss of objectivity. This enables the Chief of Defense Nuclear Security to better 
ensure effective implementation of NNSA security programs. Additionally, it provides feedback 
on performance to the operational and tactical levels. 

These Federal security assessments should include performance testing of all critical elements. 
The assessors should issue clear findings which are to be tracked and closed in a program-wide 
corrective action management system. Federal assessors should also look closely at the 
contractor self-assessment process; “failures to identify” by the contractor self-assessment 
element should automatically rise to the level of significant findings. 

The final tier of the assessment model should explicitly rely upon the services of the independent 
security oversight function currently provided by HSS. NNSA should arrange for a regular 
process of comprehensive inspections. The oversight function should be encouraged to issue 
strong findings for matters of potential concern to the NNSA Administrator and the Secretary of 
Energy, and should routinely evaluate the performance of contractor self-assessments and the 
Federal assessment program. 

This performance assessment model assumes a common requirements base that is employed at 
all levels and across the NNSA security program. While some allowance may be made for site- 
specific issues, the fundamental elements of this requirements base should be an appropriately 
integrated system of DOE policies, NNSA implementation directives, and field operational 
guidance. The requirements base should be reflected in approved documents such as site 
Safeguards and Security Plans. Specific performance requirements should be articulated in 
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detailed performance standards and criteria supported by a commonly understood and utilized 
performance testing process. 

Closing 

Over the years, there has been tension between implementation of security and conduct of 
operations. Whenever there have been significant incidents of security concern, there have been 
corresponding swings of the pendulum towards a more rigorous security program. Security 
program emphasis has increased after espionage cases, internal security lapses, and external 
events such as the September 11, 2001 attacks. However, over time, the general trend has been 
to accept more risk and to reduce the perceived burden and cost of the security mission. 
Furthermore, the trend has been to remove security from an integral mission role, adversely 
affecting the NNSA security program. The events at Y-12 illustrate how far the pendulum has 
swung in the wrong direction. 

The Secretary of Energy characterized the Y-12 events as “unacceptable” and clearly stated that 
security is the highest organizational priority. The NNSA Administrator has been equally 
emphatic in numerous public statements since the incident. The evidence from Y-12 and from 
prior security incidents points to a culture of compromises. Moving forward, NNSA must 
establish and sustain an effective security program. NNSA must address the significant flaws in 
the current organizational structure for security and the associated assessment model. NNSA 
must clearly and consistently emphasize the importance of security. Ensuring that the right 
leadership is in the right position is absolutely critical to success. The daunting prospect — ^and 
the one that will require the consistent emphasis of current and future Secretaries of Energy and 
future Administrators of the NNSA — ^will be to instill a culture that embraces security as a 
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fundamental and essential element of the NNSA mission. If NNSA fails in this, then senior 
leaders will again find themselves answering to the American people for the failures of security. 
Sooner or later, the perpetrator will not be peacefully-minded. 
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Mr. Murphy. Thank you. I appreciate that. 

Mr. Poneman? 

TESTIMONY OF DANIEL B. PONEMAN 

Mr. Poneman. Chairman Murphy, Ranking Member DeGette, 
and members of the subcommittee, thank you for the invitation to 
appear before you today to provide the subcommittee details on the 
actions the Department has taken or will take to strengthen the se- 
curity of the Nuclear Weapons Complex in the wake of the July, 
2012, Y-12 incident. We appreciate the interest and engagement of 
this committee and recognize the important oversight role that you 
fulfill. The Secretary and I recognize the severity of the problem 
that led us to this point, and we have acted swiftly to identify and 
address the issues it revealed. 

Since the Y-12 incursion, several major actions have taken place 
to improve security immediately and for the long term. Let me tell 
you about a few of them. 

We restructured the contracts at Y-12 to integrate security into 
the line of command at the M&O contractor. The protective force 
contractor was terminated, and a new M&O contractor has been se- 
lected to manage the Y-12 site, providing an opportunity for new 
leadership and to improve the Y-12 security culture. We held ac- 
countable both the senior federal and contractor management per- 
sonnel at headquarters and the site, removing them from their po- 
sitions. The Department’s Chief of Health, Safety, and Security 
conducted an independent security inspection of Y-12 security op- 
erations, which include rigorous force-on-force performance testing, 
as well as no notice and short notice limited scope performance 
testing activities as directed by the Secretary. HSS will be con- 
ducting a follow-up review in April to examine the status of the im- 
plementation of corrective actions. The Secretary also directed HSS 
to conduct immediate extent of condition assessments of all sites in 
Category I nuclear materials across the DOE complex, to identify 
any immediate security issues and to follow up with a full security 
inspection, including force-on-force exercises to assure effective se- 
curity measures are being implemented at those sites. 

NNSA conducted an immediate after-action report to identify 
causes, issues to be addressed and recommended action, and you 
just heard very eloquently summarized the findings of those re- 
ports. 

In order to address these institutional problems that have been 
revealed, we are continuing to embrace and implement the findings 
of General Finan’s report, which you just heard her describe. 

Because we believe that we need fresh perspectives from disin- 
terested parties to consider broader and long-term responses to this 
incident. Secretary Chu requested three independent experts in 
this area to conduct a strategic review of the entire DOE security 
architecture, with a particular emphasis on Y-12, and I see that 
you are joined by two of the three of these eminent experts here 
today. Each of them provided thoughtful advice on the DOE’s nu- 
clear security structure, specifically, all Category I nuclear facili- 
ties. We are now reviewing and discussing their advice on how to 
improve security at Y-12, and across the nuclear enterprise. 
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The series of personnel and management changes I have de- 
scribed today were made to provide effective security at the Y-12 
site, and across the DOE complex. We are also working to carry out 
the structural and cultural changes required to secure all Category 
I nuclear materials at this and all other DOE and NNSA facilities, 
and in this respect, I welcome the comments of — in your opening 
remarks from members of this subcommittee about the need to in- 
troduce cultural changes so that we are not back in the same situa- 
tion again. That is absolutely critical, and I think as we get into 
the discussion, what you hear in terms of what we are imple- 
menting from General Finan’s report will put us in the right direc- 
tion in that respect. 

Our management principles hold that our mission is vital and ur- 
gent. Nowhere is that more true than here. The security of our Na- 
tion’s nuclear material and technology is a core responsibility of the 
Department, in support of the President and in defense of the Na- 
tion. The incident at Y-12 was unacceptable and served as an im- 
portant wakeup call for our entire complex. The Department is tak- 
ing aggressive actions to ensure the reliability of our nuclear secu- 
rity programs across the entire DOE enterprise and will continue 
to do so. 

In that effort, the Department looks forward to working with this 
subcommittee to ensure the security of the Nation’s nuclear mate- 
rials. I would be pleased, of course, to answer any questions from 
members of this subcommittee, and request the balance of my 
statement be submitted for the record. 

Thank you, Mr. Chairman. 

[The prepared statement of Mr. Poneman follows:] 
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Hon. Daniel B. Poneman 
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U.S. Department of Energy 

Before the 

Subcommittee on Oversight and Investigations 
Energy and Commerce Committee 
U.S. House of Representatives 

March 13, 2013 

Chairman Murphy, Ranking Member DeGette, and members of the Subcommittee, thank you 
for the invitation to appear before you today to provide the subcommittee details on the 
actions the Department has taken or will take to strengthen management, oversight, and 
security of the nuclear weapons complex in the wake of the July 2012 Y-12 incident. We 
appreciate the interest and engagement of this Committee and recognize the important 
oversight role that you fulfill. We also share the Committee's commitment to assure that all of 
our offices and operations are delivering on our mission safely and securely— from 
Washington, DC, to California, from every naval reactor to every warhead, from production to 
clean-up, from deterrence to nonproliferation. 

Introduction 

Since its creation in 1999, the National Nuclear Security Administration (NNSA) has served as a 
separately-organized entity within the U.S. Department of Energy, entrusted with the execution 
of our national nuclear security missions. Living up to the challenging demands of executing 
our mission safely, securely, and in a fiscally responsible manner requires dally management 
through strong, effective, and efficient relationships with our Management and Operating 
(M&O) contractors. 

The protection of all Department of Energy (DOE) people and assets — our federal and 
contractor employees, technology, and physical assets, including both nuclear and non-nuclear 
facilities and other resources — is of integral importance to our mission. The Secretary and I 
know that, and understand our responsibilities to that mission, in its entirety. Indeed, we have 
reflected our commitment through our Management Principles, which provide that: 

• We will treat our people as our greatest asset; 

• We will pursue our mission in a manner that is safe, secure, legally and ethically sound, 
and fiscally responsible; and 

• We will succeed only through teamwork and continuous improvement. 
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The Secretary has expressed a consistent, unwavering commitment to maintain safe and secure 
work environments for all Federal and contractor employees. In that spirit, we are determined 
to assure that the Department's and contractors' operations do not adversely affect the health, 
safety, or security of workers, the surrounding communities, or the Nation. 

doe's mission includes diverse operations, involving a variety of nuclear materials and 
processes. We recognize our unique obligations as a self-regulated agency to establish and 
meet exacting standards for nuclear safety and security, to maintain robust nuclear safety 
performance, and to provide rigorous and trustworthy oversight and enforcement of those 
nuclear safety and security standards. We must also maintain a safety and security culture that 
values and supports those standards, and assures that individuals can freely step forward to 
voice their concerns related to our safe execution of our mission, indeed, we encourage them 
to do so. Only through these actions can we provide adequate protection of our workers, the 
public, and the environment, whiie sustaining the public trust and confidence crucial to our 
ability to fulfill the mission. 

To achieve our mission, DOE must strive to excel simultaneously as a self-regulator, as an 
owner, and as an operator of the facilities in our national security complex. Each of these roles 
is vital and must be executed with integrity. The July 2012 incident at Y-12, as the Secretary 
and I have repeatedly emphasized, was unacceptable, and we have taken and will continue to 
take steps not only to identify and correct issues at that site, but across the DOE complex. I will 
address the Department's response to the incident in more detail later in this testimony. 

Roles and Responsibilities for Nuclear Security within DOE 

The Secretary and I bear ultimate responsibility for nuclear safety and security at DOE facilities. 
Under our direction, line managers have the authority and the responsibility for establishing, 
achieving, and maintaining stringent performance expectations and requirements among all 
Federal and contractor employees, at DOE labs and other facilities. 

The Department's Office of Fleaith, Safety and Security (HSS), in consultation with line 
management, is responsible for the development of DOE nuclear safety and security policy. 
Federal Rules, Orders, and the associated standards and guidance, as well as for reviewing 
safety and security issues complex-wide. HSS also conducts independent oversight and 
regulatory enforcement that is independent from line management. HSS oversight has 
expanded the scope and variety of performance testing methods utilized to assess the 
readiness of DOE and NNSA site protection systems against a defined spectrum of threats and 
adversary capabilities Performance testing methodologies include no-notice and limited notice 
inspections to obtain a more realistic assessment of site response capabilities and readiness 
performance. 

The Department's approach to nuclear safety and security is founded on a demanding set of 
standards that capture knowledge and experience in designing, constructing, operating. 
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deactivating, decommissioning, and overseeing nuclear facilities and operations. DOE applies 
validated national and international standards to the maximum extent possible, because these 
standards reflect broad input from a large and diverse group of experts. As our management 
principles state: "We will apply validated standards and rigorous peer review." 

Our management principles also require that we "manage risk in fulfilling our mission." This is 
essential to a robust safety and security culture, as demonstrated by the 2010 Deepwater 
Horizon oil spill, which vividly demonstrated the inadequacy of a mere "check-the-box" 
mentality by regulated entities when it comes to smart decision-making in a complex and 
hazardous operational environment. Since DOE expects scrupulous compliance with its 
requirements, managers and workers must recognize and embrace their personal 
accountability to meet safety standards, while avoiding a tendency for rote compliance with 
requirements. In some cases, it may be necessary to raise a hand and ask if another approach 
could offer a smarter way to assure safety. This questioning attitude must be encouraged. 

Finally, the Secretary and I are also dedicated to strengthening contract and project 
management. Indeed, we cannot succeed in advancing our goals for the Department if we fall 
short in this effort. And, as we all know, safety and security are integral to effective contract 
management. Indeed, safety and security are key performance standards and elements of 
every contract, and extensive oversight is required to ensure stewardship as well as legal and 
regulatory requirements are met. When we have a safety or security problem, we must fix it, 
which may lead to increased costs and delays. So building safety and security into the fabric of 
our programs and our projects from the start and continuously monitoring adherence to safety 
standards is not just the right thing to do from a moral perspective, and not Just the necessary 
thing to according to our governing laws and regulations, but it is also the smart thing to do, as 
stewards of our responsibilities to the Nation and its taxpayers. 

Response to Y-12 Incursion Incident 

On Saturday, July 28, 2012, at 4:30AM three individuals trespassed onto the Y-12 National 
Security Complex and defaced a building at NNSA's Y-12 National Security Complex in Oak 
Ridge, Tennessee. 

This incursion and inadequate response to it demonstrated a deeply flawed security culture and 
equally flawed execution of security procedures at Y-12. In response to the incident, we acted 
swiftly to identify and address the problems it revealed. 

Since the Y-12 incursion, several major actions have taken place to improve security: 

Federal and Contractor Management Changes 

New senior Federal and contractor management personnel were brought in to take charge of 
Site and Headquarters organizations, to transform our approach to security. Of the Federal 
personnel, a highly-experienced individual was appointed to serve as the new Chief of Defense 
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Nuclear Security and to develop overall policy; two Federal office directors experienced in 
security matters were appointed to implement the new policies. Of the contractor 
management personnel, a new M&O Site Manager and the top security official were appointed 
by the contractor to implement the vital security transformation. 

IG Inquiry into Y-12 Security Breach 

The Department and NNSA have been working diligently to implement the recommendations of 
the August 2012 IG report, including verifications that all critical security equipment at Y-12 has 
been repaired and is operational. 

Protective Force Contract Terminated, New M&O Contractor Selected 

WSI's protective force contract was terminated and a new M&O contactor has been selected to 
manage the Y-12 site, providing an opportunity for new leadership and to improve Y-12's 
security culture and management. The award is currently under an automatic stay while being 
protested.at the GAO. Combining contracts and site offices will allow us to improve 
performance and operate as an integrated enterprise. 

HSS Y-12 Security Inspection 

HSS conducted an independent security inspection of Y-12 security operations, which included 
rigorous force-on-force performance testing as well as no-notice and short-notice limited scope 
performance testing activities as directed by the Secretary. The final report of inspection 
results was completed and briefed to senior management on September 28. The Y-12 
inspection results were also briefed to Congressional staff. HSS will be conducting a follow-up 
review in April to examine the status of implementation of corrective actions. 

Extent of Condition Reviews 

At the direction of the Secretary, the Department's Chief of Health, Safety and Security also 
conducted extent of condition reviews at all of the DOE and NNSA Category I Special Nuclear 
Material (SNM) sites in collaboration with DOE and NNSA Program Offices. These reviews 
assessed the current security posture, specifically to determine whether the systemic issues 
identified at Y-12 were present at other sites, so that any necessary steps could be taken to 
cure any such defects. HSS completed its review in December 2012. The results were briefed to 
DOE leadership and Congressional staff. 

Comprehensive Independent Oversight Security Inspections of all Category I Sites 

The Secretary also directed HSS to conduct assessments of all Category I sites across the DOE 
complex, to identify any systemic security issues. These deep dives are being conducted by the 
HSS Independent Oversight organization, and include the HSS enhanced program of 
performance testing program, evaluation of force-on-force exercises, no-notice security testing. 
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and comprehensive security inspections at all Category 1 sites by October 2013. HSS has 
completed security inspections at Y-12, Oak Ridge National Laboratory and the Hanford Site. 
Results of these inspections have been briefed to DOE leadership and Congressional staff. The 
remaining security Inspections will include the Savannah River Site (field work completed 
February 21), Pantex Plant, Idaho National Laboratory, Office of Secure Transportation, the 
Nevada National Security Site, and Los Alamos National Laboratory. 

Independent Expert Review of Y-12 

Secretary Chu requested three former senior executives from Federal agencies and the private 
sector to conduct a strategic review of the entire DOE security architecture with a particular 
emphasis on Y-12. These executives included President of the Carnegie Foundation and former 
Nuclear Regulatory Commission Chairman Richard Meserve, former Lockheed Martin CEO 
Norman Augustine, and retired Air Force Major General Donald Alston. Each one provided 
thoughtful advice on the DOE's nuclear security structure, specifically all Category I nuclear 
facilities. Their words of advice and ideas are current being considered to improve security at Y- 
12 and across the nuclear enterprise. 

Brigadier General Sandra Finan's Review 

On August 14, 2012, then NNSA Administrator Tom D'Agostino commissioned a Security Task 
Force led by Brigadier General Sandra Finan to analyze the then-current federal NNSA security 
organizational structure and security oversight model, and to recommend possible 
improvements. 

Over the course of several months, Gen Finan and the members of the Task Force conducted a 
thorough review of NNSA security operations at headquarters and in the field. 

Organizational Improvements 

Prior to the Y-12 incursion, the Headquarters NNSA security organization, the Office of Defense 
Nuclear Security (NA-70), served as a "Functional Manager" for the security mission, while the 

line authority flowed from the Secretary to other NNSA Administrators and other organizations. 
General Finan recommended for strategic-level policy guidance, requirements determination, 
and performance assessment to be under the jurisdiction of the Chief, Defense Nuclear Security 
(NA-70). NNSA's Office of the Associate Administrator for Infrastructure and Operations (NA-00) 
would provide the operational accountability for NNSA's security organization. Operational 
implementation and standardization of operations across the security program occurs at the 
NA-00 level. 

The existence of a single point through which the field reports and is held accountable is the 
way the NNSA will assure the consistent and effective implementation of security policy. This is 
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a change from the approach the NNSA has taken— where each field office had greater latitude 
in implementing policies and requirements for its site. 

Additionally, Gen. Finan made recommendations to eliminate the conflict between DOE 
Security Orders and NNSA NAPs. Specifically, NNSA should use DOE Security Orders. DOE has a 
specialized security policy function that produces its orders. Rather than attempt to duplicate 
this function, DOE orders would provide direction while the NAP process would provide 
guidance and clarify information in the orders as appropriate, but not reduce requirements. 

Changing the Assessment Model 

Regarding NNSA's security oversight model, Gen. Finan found that at the time of the Y-12 
incursion NNSA did not have an adequate security performance assessment process or 
capability. The systems-based assessment model that was employed was ineffective for 
security. NNSA lacked a clear and consistent performance baseline for security program 
implementation and the assessment model was biased against criticism. 

To directly address problems with the assessment model, NNSA has set about implementing a 
three-tiered approach to assessing security throughout the NNSA. This approach includes: 1) 
an initial assessment performed by the contractor at the site, 2) an assessment of the 
contractor's performance carried out by the Chief of Defense Nuclear Security at DOE 
Fleadquarters (NA-70), and 3) independent oversight by the Office of Health, Safety and 
Security. And, of course, apart from this three-tiered assessment and inspection regimen, we 
expect Federal site personnel to perform quality assurance activities on a routine basis as an 
integral part of their line management responsibilities. 

The Secretary and I are pleased that the NNSA has responded to Gen Finan's recommendations 
seriously and is on a course to implement effertive security improvements. 

The series of personnel and management changes I have described today were made to provide 
effective security at the site and across the DOE complex. We are also working to carry out the 
structural and cultural changes required to secure all CAT 0/1 nuclear materials at this and all 
other DOE and NNSA facilities. 

Conclusion 

In conclusion, the security of our Nation’s nuclear material and technology is a central 
responsibility of the Department, in support of the President and in defense of the Nation. We 
must remain vigilant against error and complacency and have zero tolerance for security 
breaches at our Nation's most sensitive nuclear facilities. The incident at Y-12 was 
unacceptable, and it served as an important wake-up call for our entire complex. As a result, 
the Department is carefully reviewing security at all of our NNSA sites - as well as all of the 
recommendations of the HSS security review teams. Brigadier General Finan, DOE IG, and 
independent reviews provided by distinguished military and private sector experts - with a 
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view to taking all those steps that are needed to protect this Nation's most sensitive materials 
and technologies. The Department is taking aggressive actions to ensure the reliability of our 
nuclear security programs across the entire DOE enterprise, and will continue to do so. 

We accept the responsibility that we have inherited from the generations of Americans going 
back to the Manhattan Project to assure the safe and secure stewardship of our nuclear 
enterprise in order to deter aggression, defend our freedom, and support our allies. 

In that effort, the Department looks forward to working with the Committee to ensure the 
security of the nation's nuclear materials. I would be pleased to answer any questions from 
members of the Subcommittee. 
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Mr. Murphy. And so will the balance of your statement will be 
submitted for the record. 

We understand, Ms. Miller, you do not have an opening state- 
ment, so we will go right into some questions. I will recognize my- 
self for 5 minutes. 

First of all, let me just say that I appreciate your candor. Noth- 
ing is better for leaders than to step forward and say mistakes 
have been made, taking full responsibility, and taking definitive ac- 
tion. I thank you for that. We are certainly hoping this never hap- 
pens again, and we hope that the report and recommendations are 
going to be fully implemented and continue to be reviewed. 

So let me start with you. General Finan. Your task force identi- 
fied the serious weaknesses in the federal capability to evaluate 
contractor performance at the Nuclear Weapons Complex. The 
NNSA administrator commissioned your report. I am correct in 
that? 

General Finan. Yes, sir. 

Mr. Murphy. It is also correct that the recommendations are di- 
rected at the administrator, not the Secretary of Energy, am I cor- 
rect? 

General Finan. That is correct. It was all NNSA-focused. 

Mr. Murphy. Thank you. I just want to make sure we are fol- 
lowing the right chain here. 

Mr. Poneman, as Deputy Secretary of Energy, you and the Sec- 
retary set high level policy direction and safety and security stand- 
ards for NNSA’s mission, but it is the responsibility of the NNSA 
to arrange a structure to accomplish these goals. That is up to the 
administrator, am I correct? 

Mr. Poneman. It is up to the administrator, of course, subject to, 
as you just said, the leadership of the Secretary and the Deputy 
Secretary. 

Mr. Murphy. And something you will continue to monitor as 
well? 

Mr. Poneman. Absolutely. 

Mr. Murphy. Thank you. 

Ms. Miller, you are now the NNSA Acting Administrator. 

Ms. Miller. That is right. 

Mr. Murphy. Is it correct that you were Principal Deputy Ad- 
ministrator at NNSA as it implemented its safety and security re- 
form efforts in 2010? 

Ms. Miller. I became the Principal Deputy Administrator in Au- 
gust of 2010. 

Mr. Murphy. OK. Do you agree with the findings of General 
Finan’s report? 

Ms. Miller. I completely agree with them. 

Mr. Murphy. Thank you. 

General Finan states that NNSA must clearly and consistently 
emphasize the importance of security. Do you agree with her state- 
ment? 

Ms. Miller. I absolutely agree with them. 

Mr. Murphy. Thank you. 

Do you believe that NNSA’s leadership has been inconsistent in 
the message it sends to the field about security emphasis? 
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Ms. Miller. I believe it has been inconsistently communicated, 
yes. Absolutely. 

Mr. Murphy. Were you aware of the inconsistent messages on 
security prior to Y-12? 

Ms. Miller. I would say that I was aware that because the chief 
of Defense Nuclear Security, as well as the chief of Defense Nu- 
clear Safety reported directly to the administrator and not to me. 
I would say I was aware of the difficulty and the inconsistencies 
in communicating policy and decisions for security and many other 
areas from the headquarters organization to the field offices. 

Mr. Murphy. Well yes, and since part of the purpose of this 
Committee on Oversight is to make sure that we are under- 
standing lessons learned, but what you don’t measure, you can’t 
manage. What you don’t admit, you can’t act on. Were there some 
lessons you learned from this, some things that you should do dif- 
ferently in terms of the process as we move forward? 

Ms. Miller. Mr. Chairman, I would say two things. First of all, 
there were lessons I had been learning prior to this incident that 
caused us to announce a few weeks before this incident, the end 
of July, that we were changing the way we governed our sites. And 
that is to say, we took the sites from within defense programs, our 
large weapons program, where they had been reporting for a num- 
ber of years and had them now directly report to the administrator 
through an associate administrator peer level, the senior manage- 
ment, so that we could start to drive accountability and consistency 
across our sites. So that was a measure that I had come to the con- 
clusion that organization absolutely had to make to address what 
I said before, which was concern about inconsistencies all over the 
place. 

With regard to post-Y-12 incident, in particular with security, I 
was fortunate to be able to draw upon General Finan’s rec- 
ommendations and work with her, as she was part of the organiza- 
tion at the time, and others to change the way we operate security, 
both at headquarters and in the field. 

Mr. Murphy. Thank you. 

Last month on February 5 at NNSA, associate administrator for 
management and budget disputed the Inspector General’s report 
that Y^-12 oversight was ineffective because of the “eyes on, hands 
off’ oversight approach. The officials said that the “eyes on, hands 
off’ policy never applied to security matters and that this was a 
misperception by some federal officials. Ms. Miller, why is an 
NNSA senior official continuing to dispute the impact of the “eyes 
on, hands off’ policy? 

Ms. Miller. I think the issue is not to dispute the impact. I 
think the point is that we certainly did not set out — and again, this 
predates me, but no one set out to say that oversight should not 
be conducted, that your proper role is not to be overseeing all as- 
pects of the contractor’s performance. What I would say is that, as 
you yourself mentioned, driving that message through a very large 
organization from the administrator through every individual in 
every layer at every site is the big challenge. It is the challenge in 
security, it is the challenge all over the place. It is not a new issue. 
As the ranking member mentioned, we need to break the pattern, 
and that is definitely what the organization is about right now. 
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Mr. Murphy. Thank you. Hopefully you will communicate that 
through solidly, because of the extreme concerns about what hap- 
pened. 

I recognize each member for 5 minutes as we go through. Next 
is Ms. DeGette. 

Ms. DeGette. Thank you, Mr. Chairman. 

Secretary Poneman, I was intrigued when — first of all, let me 
say, I am impressed and encouraged by the commitment the agen- 
cy has made to not having to come back here next year or the year 
after with some new crisis. I am, both in these hearings and some 
of our off — our side conversations, I do believe you have that com- 
mitment. 

Secretary Poneman, I wanted to ask you, because you just said 
in your testimony that you are committed to implementing some of 
the aspects of the General’s report to make sure that we are not 
back here in a year or two. I wonder if you could briefly tell us — 
if you could give us the highlights of what those things are? 

Mr. Poneman. Gladly, Congresswoman DeGette. 

The critical, I think, finding that General Finan’s report showed 
was that we had a lack of clarity of line of management control and 
accountability. So what we have done is, under her recommenda- 
tion implemented by Acting Administrator Miller and fortunately, 
before General Finan left us, she was the acting head of defense 
nuclear security, to get this started. We have now made sure that 
under this organization that Ms. Miller just introduced of the oper- 
ations and infrastructure that the responsibility to direct security 
at the site flows down from the administrator through that office 
to the site. The other office that had been doing security policy, so- 
called NA-70, had been actually exercising some apparent line 
management authority, which was creating confusion. That func- 
tion has been stripped away. Any line authority has been stripped 
away from NA-70. 

Ms. DeGette. So you think that is the key, having a clear chain 
of — that is the number one? What else? 

Mr. Poneman. Number two is the staff function that that new 
organization — that NA-70 must perform, they need to promulgate 
the policies and perform independent evaluations so it is not just 
the site checking itself. 

Ms. DeGette. OK, independent evaluations. Those are the two 
key things. 

Mr. Poneman. Yes, oversight and a line management. 

Ms. DeGette. Now, another issue — I don’t have — we might do 
another round, but — so I want to just go into this other issue that 
I care a lot about, which complaints that the committee has heard 
about overly burdensome oversight stifling the work being done at 
NNSA labs and sites. And what we think — I was talking to the 
chairman about this — is that federal officials need to conduct strict 
oversight of the contractors, or serious security problems can fall 
through the cracks. 

So what I wanted to ask you. General Finan, in your review, did 
you find that the problems you saw within NNSA were caused by 
overly burdensome congressional oversight? 
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General Finan. The issues that I found were not caused at all 
by oversight. It was actually caused by lack of oversight, and I 
mean oversight at every level. 

Ms. DeGette. Right, right. So what was the 

General Finan. It was impacting everything. 

Ms. DeGette. We need to have clear oversight from the top 
down, and as Mr. Poneman says, independent oversight, right? 

General Finan. The burden was actually — when you — we created 
a system that required a whole bunch of paperwork, and the paper- 
work is burdensome, but what we lost in security was the ability 
to see security performance. It was paperwork. 

Ms. DeGette. Yes, there was a bunch of paperwork, but it was 
irrelevant to the core task, right? 

General Finan. Correct. 

Ms. DeGette. Mr. Poneman, do you want to comment on that? 

Mr. Poneman. I thought it was a very apt finding, and the mis- 
interpretation of that 2010 reform is exactly on this point. We were 
trying to strip away the excessive paperwork and get to the per- 
formance testing. 

Ms. DeGette. Right, but did any of the auditor’s assessments 
conducted in the wake of the Y-12 incident find that it was caused 
by too much congressional oversight of the Y-12 contractors? 

Mr. Poneman. No, ma’am. 

Ms. DeGette. OK. The reason I bring this up is because some 
people try to say oh, we have too much oversight. It seems to me 
when we have these problems over and over again, the problem is 
not too much oversight. The problem is too little effective oversight 
and accountability. Ms. Miller, you are nodding your head. Would 
you agree with that? 

Ms. Miller. Yes, I would definitely agree. It is about effective- 
ness. 

Ms. DeGette. Now, let’s see. 

General Finan, can you tell us about the findings of the task 
force with respect to improved oversight of NNSA security contrac- 
tors? You touched on it just very briefly. 

General Finan. Right. The recommendation we are making is 
that we create an NNSA oversight function, because right now, in 
the system as I looked at it a couple of months ago, NNSA did not 
have any oversight capability. They depended on onsite federal per- 
sonnel to analyze contractor performance. But again, they were ap- 
plying the “eyes on, hands off’ concept and so that was varied from 
site to site. And what happened is that you lacked — there was no 
sense of criticism in this assessment, right? 

Ms. DeGette. Right. 

General Finan. You had onsite people who were your really only 
federal ability to look at contractor performance. Well, those folks 
onsite grew up there, they lived there, you know, they spent their 
whole time. They identified with the mission and they were really 
not a very good source of independent oversight as to contractor 
performance. 

Ms. DeGette. Thank you. 

Mr. Poneman and Ms. Miller, do you agree with that? 

Mr. Poneman. Absolutely 

Ms. Miller. Yes. 
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Mr. PONEMAN [continuing]. And the reforms we described I think 
reflect that finding. 

Ms. DeGette. Thank you. 

Ms. Miller, do you agree with that? 

Ms. Miller. I do. 

Ms. DeGette. Thank you. 

Mr. Murphy. Thank you. Gentlelady yields back. 

I now recognize the gentleman from Ohio, Mr. Johnson, for 5 
minutes. 

Mr. Johnson. Thank you, Mr. Chairman. 

Mr. Poneman, in her testimony. General Finan states that NNSA 
must clearly and consistently emphasize the importance of security. 
Unfortunately, here is the consistent message that the DOE, NNSA 
organizations, and contractors were hearing. In March of 2010, Sec- 
retary Chu stated his vision that he wanted DOE to be viewed as 
a valued partner and asset to contractors. He went on to suggest 
that safety could be ensured with a skeleton crew of health and 
safety experts. Also in March of 2010, Mr. Poneman, you wrote in 
the Department’s safety and security reform plan that success will 
be measured through near-term relief from specific low-value bur- 
densome requirements, as well as longer term streamlining of re- 
quirements that will lead to measurable productivity improve- 
ments. I note that safety and security did not factor into this defi- 
nition of success. Would you agree that statements like these send 
mixed signals about the Department’s commitment to safety? 

Mr. Poneman. Congressman, the portion of the document read 
from my document, the genesis of that was to set out a set of safety 
and security objectives, so in fact, that particular sentence is out 
of documents that are precisely intended to maximize safety and 
security. What is unfortunate, what has happened is the misinter- 
pretation of that. What we were trying to do, sir, is to get rid of 
the checkbox mentality, just looking at paperwork and creating pa- 
perwork, get back to performance testing, so we could be better, 
safer, and more secure. That is absolutely our objective. 

Mr. Johnson. What are you doing today to ensure consistent and 
clear emphasis on safety importance from the headquarters on 
down? 

Mr. Poneman. Number one, we are, on both safety and security, 
assimilating all of the learnings from reports such as General 
Finan’s. Number two, because we have found safety culture issues 
as well as security culture issues, we have regular meetings where 
we assemble the top leadership in the Department to check on a 
continuing basis that this is being messaged consistently through- 
out the complex. One of the major challenges. Congressman, that 
we have found is — as you heard with this talk about “eyes on, 
hands off’ — is the misinterpretation, like a kid’s game of Tele- 
phone, is a terrible problem. So it is not enough to promulgate a 
good policy. You have got to continually stay on it, message it, and 
work with your leadership and work with the people in the field. 

Mr. Johnson. OK, thank you. 

Ms. Miller, a week or so before the Y-12 incident in July of 2012, 
Mr. Don Cook, NNSA Deputy Administrator for Defense Programs, 
made the following remarks, and I quote, “With regard to the rela- 
tionship that we have and where we are between NNSA and its 
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labs and plants — I didn’t say my labs and plants, but you can tell 
I feel that way — getting to the point where we have oversight on 
these, which is eyes on, hands off oversight, has been my aspiration 
for several years and it remains so. It was my aspiration when I 
worked on the lab side for many years. General Finan completed 
that ensuring that the right leadership is in the right position is 
absolutely critical to success.” What are you going to do to make 
that happen, ensure that leadership is sending the right message 
about the importance of safety and security? 

Ms. Miller. Mr. Johnson, sending the right message, in my view 
and after many years of looking at the NNSA mostly from outside 
of it, is a challenge that is not achieved just by making sure that 
people at the top level know what the message means. But it is dif- 
ficult to make sure that every single person in the 10,000 people 
at a given lab or 30,000 throughout our complex understand what 
we are talking about. If we — what we are doing at NNSA is work- 
ing to be able to communicate and train and talk to people at every 
single level to make sure it is not going to be misunderstood. We 
recently changed all of our M&O contracts. The performance meas- 
ures in those contracts are all now connected to safety and security 
so that it is not possible to believe that you have performed accord- 
ing to the terms of a contract in an area like nuclear weapons if 
you have not also met the performance plans for safety and secu- 
rity. It just isn’t going to happen. 

So this is a step-by-step throughout the organization. It is not 
just at the top level. 

Mr. Johnson. OK, good. 

One final question. General Finan. First of all, as a 261/2 year 
veteran of the Air Force myself, thank you for your service and 
what you have done here. 

A troubling finding in your report is that potentially critical man- 
agement information is not being reported clearly to the appro- 
priate decision makers. Would you elaborate on what you mean by 
this? 

General Finan. Yes, sir. As we interviewed people and took a 
look at what was happening, we found out at the lower levels, 
there were people who knew what issues existed out there and 
knew the significance of those issues. But as they attempted to rise 
those issues up to senior levels, they were being suppressed. Man- 
agement at mid levels would suppress it, and so in many cases, 
critical decision information was not making its way to the top of 
the organization. 

Mr. Johnson. OK, thank you for that, and with that, Mr. Chair- 
man, I yield back. Thank you. 

Mr. Murphy. OK, gentleman’s time is expired, and I will now 
recognize Mr. Tonko for 5 minutes. 

Mr. Tonko. Thank you, Mr. Chair. 

General Finan, you state in your testimony that the findings of 
this task force were very similar to those numerous prior reports 
by other review teams, so my question is, what happened to the 
recommendations of the prior review teams? Were they ever imple- 
mented? Was the implementation insufficient, or is there a larger 
problem that still needs to be identified? 
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General Finan. There is a cultural issue. Those findings, as you 
look at them, you go back to see what people did, you will find that 
there are some actions that were put in place, but there was a 
check the box mentality that said we want to get rid of the findings 
as fast as we can. So they do whatever they could to say yes, I have 
responded to this finding and it is gone. And so the things that 
they changed didn’t stick. It was just a matter of taking action, 
checking the box, closing the finding, and going on to the next 
thing. And so what needs to happen is all those things need to be 
taken in aggregate, we need to create a roadmap, and then we need 
to change the culture so that we continuously evaluate those things 
and go back and make sure that we don’t, year after year, make 
the same mistake and that we are not interested in checking the 
box off, we are interested in changing the way we do business so 
we do it the right way. 

Mr. Tonko. Thank you. There seems to be a theme that runs 
through a number of the task force’s observations that cost control 
was a bigger concern for many of the people managing the pro- 
gram, the security program, than performance of the security mis- 
sion. This implies there is a real or perceived lack of resources to 
support the security mission fully. Which is it, real or perceived? 

General Finan. It is a combination of both. What happened was 
that management had overwhelmingly started to figure out — they 
wanted to reduce the cost of security, and so in doing that, what 
they did is they lost sight of the requirements of security, and be- 
cause the two were mixed together, the people who determined re- 
quirements and the budget were the same people. What happened 
was that they were no longer looking at the actual requirements 
for security. They lost sight of what was required in order to ade- 
quately secure these materials and these sites, and moreover, they 
lost visibility on the important aspect of protecting our operational 
capability and our people. And those items actually got no visibility 
at all and were completely ignored. They thought that if they could 
do the big war, if they could fight the terrorists, they could do all 
the lesser includeds, therefore, they never needed to look at lesser 
includeds. Well, lesser included happened to be a protest event, 
and Y-12 proved that lesser includeds do not — you cannot do lesser 
includeds just because you can fight the larger issues. So it was a 
combination of wanting to reduce the budget, which is a good thing. 
We ought to always be efficient, but when you lose sight of the re- 
quirements, what happened is senior leaders at NNSA did not get 
to make the decision. Do I want to fund that requirement or do I 
want to take the risk? The risk was being assumed at lower levels 
by default rather than being made at the senior decision maker 
level at NNSA. 

Mr. Tonko. Deputy Secretary Poneman — and I thank you for 
that answer — ^but Deputy Secretary, how much of DOE’s budget is 
spent on contractors, your area of the budget? 

Mr. Poneman. The vast majority. I think it is well over 80 per- 
cent, and we can get you a precise number. I think it is on the 
order of 85 percent. 

Mr. Tonko. With that amount, the agency then, is it fair to say, 
is relying on private contractors to implement many key security 
and safety goals? 
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Mr. PoNEMAN. Yes, Congressman, going back to the origins of 
the Department, back to shortly after World War II, Atomic Energy 
Commission, this whole model of the so-called management and op- 
erating contractor, the M&O contractor model puts most of the pro- 
grammatic and security burdens in the hands of contractors who 
were exercising that authority under federal oversight. 

Mr. Tonko. So do the contractors then have a conflicting bid of 
incentives here when carrying out their duties? 

Mr. PoNEMAN. There is a risk. Congressman, and in that respect, 
again, one of the many fine findings of General Finan’s report, I 
think, shows the way we need to address that is the contractor 
must own and take responsibility for security, and in the first in- 
stance, must evaluate that under their own self-analysis, but that 
then needs to have a double check, first from the headquarters so 
there is not the onsite cozy relationship, so there is some difference 
and the federal oversight is effective, and secondly, from an inde- 
pendent organization, the HSS organization, to effectively ensure 
you have a disinterested third party look to make sure that that 
security is being well executed and there are not conflicts of inter- 
est, and to hold the contractor accountable if they do not self-dis- 
close problems in security that they, in fact, find in their own 
forces. 

Mr. Tonko. General Finan, is it possible that contractor concerns 
over cutting costs could have been one of the causes of the Y-12 
incident at Oak Ridge? 

General Finan. It could have been, and it may have been that 
they had cut back some of their maintenance personnel in order to 
cut costs, and therefore had misprioritized actions, so it could be 
a contributing factor. 

Mr. Tonko. Thank you. With that, I yield back. 

Mr. Murphy. Gentleman’s — thank you very much. 

The chair recognizes the chairman emeritus of the committee 
from Texas, Mr. Barton, for 5 minutes. 

Mr. Barton. Thank you, and I appreciate the courtesy of letting 
me ask questions out of order, since I wasn’t here at the beginning. 
I appreciate that of my junior members. 

I want to refresh the subcommittee’s memory a little bit. We 
have had repeated security incidences at the weapons complexes in 
the national laboratories over the last 20 years. We have had tapes 
lost, we have had materials lost. This latest incident, which has 
been sanitized to call the Y-12 incident, three nuns, I think, one 
fairly elderly, penetrated to the deepest security of our weapons 
complex. A nun, oK, nuns. They showed up at one of our hearings 
and they were in the audience, and these were not ninja warrior, 
fiat belly, skulking people. These were just ordinary folks who wan- 
dered in, so to speak. So we have, once again, another task force 
that is going to try to rectify the problems. 

Now, I want to get the players straight. General Finan, you are 
not in the normal chain of command at the Department of Energy, 
is that correct? 

General Finan. I am no longer assigned to the Department of 
Energy. I am back in the Air Force. I was always in the Air Force, 
but 
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Mr. Barton. This report that you have helped to prepare was 
done at the request of DOE, at the request of the then adminis- 
trator, hut you were kind of an outside, fresh look person, is that 
correct? 

General Finan. Well, I guess I would call myself an inside out- 
sider. By that time, I had heen assigned to NNSA for 18 months, 
but I was always an Air Force asset. My reporting chain runs 
through the Air Force. I was always an Air Force member, but I 
was assigned to NNSA for 2 years. 

Mr. Barton. OK, now the report that you testified on has been 
presented to the Department of Energy, is that correct? 

General Finan. Yes, sir. 

Mr. Barton. Now I want to go to Deputy Secretary Poneman. It 
used to be the Deputy Secretary is the number two person at DOE. 
Is that still the case? 

Mr. Poneman. Yes, sir. 

Mr. Barton. Are you the chief operational officer at DOE? 

Mr. Poneman. Yes, sir. 

Mr. Barton. OK. So you have read the report 

Mr. Poneman. Yes, sir. 

Mr. Barton [continuing]. That has been prepared? I have read 
a summary of it. It is fairly damning, but it is pretty clear cut in 
its recommendations. So the bottom line question is what are you 
going to do about it? Are you going to accept the recommendations 
and act on them, or are we going to pontificate and fiddle faddle 
around and not do anything? 

Mr. Poneman. Yes, sir, it is a fine report. It is excellent. It is in- 
sightful. We embrace it and not only have we already accepted and 
put into practice the recommendations, but while we still had the 
benefit of General Finan’s service in the Department, we made her 
Acting Chief of Defense Nuclear Security to oversee the beginnings 
of the implementations. 

Mr. Barton. So she gets to implement the recommendations? 

Mr. Poneman. She had that started, and as she just indicated, 
been reassigned and we are carrying forward from that. 

Mr. Barton. One of the recommendations is that you eliminate 
this multiple diverse authority. Is that going to be done, central- 
izing the one line of authority? That is one of the primary 

Mr. Poneman. That, sir, already has been done and the further 
clarification of the role of the other security organizations is also 
underway. We are, as was indicated, also taking into account more 
widely the recommendations from what we call the Three Wise Ex- 
perts about — from whom you will hear directly, but the parts that 
you have heard from General Finan, we are already putting into 
effect. 

Mr. Barton. OK. Now this concept of “eyes on, hands off” over- 
sight, there seems to be some misunderstanding about that. I don’t 
see how that would work anyway. 

Mr. Poneman. I don’t either, and I think it is a terrible thing 
that anyone ever thought that that made sense or was the policy 
of the Department. It is absolutely the wrong way to think about 
it. 
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Mr. Barton. So we can assume, since you are the number two 
person, that whatever that concept was, it is no longer in use? It 
is gone? 

Mr. PoNEMAN. Yes, we have tried and we will continue, because 
you can’t repeat these messages often enough, to be very, very clear 
that the federal oversight is critical and it needs to be active and 
performance-based, and it cannot be “eyes on, hands off.” That 
would never work. 

Mr. Barton. OK, now my final question, can we be — can you as- 
sure the committee that the actual security of the weapons complex 
is a first-degree, primary function and it is not subject to cost 
issues? I mean, we want these facilities and materials and the peo- 
ple that are operating within those facilities to be secure, period, 
and not secondary to the cost of maintaining the security. 

Mr. PoNEMAN. Let me be very clear. Congressman. There is 
nothing more important than the safety and the security of the 
complex. That is our top priority. We will always, as you would ex- 
pect, make sure that we are good stewards of the taxpayer re- 
sources and not waste money. I don’t think that is the implication 
of your question, but we will always make sure that we never com- 
promise security for any other derivative objective, and the security 
of that material is paramount. 

Mr. Barton. Thank you, and thank you, Mr. Chairman and the 
other members. I yield back. 

I would love to have a hearing within the next year or two where 
we can pat these people on the back and say you have actually 
done what you said. Things are working. There are improvements. 
Now, I am a skeptic. I doubt we will have that hearing, but I cer- 
tainly hope that we can and I especially want to commend Con- 
gresswoman DeGette. She has been fighting these fights almost as 
long as I have, and with the same degree of fervor and intensity, 
and I am sure that with Dr. Murphy’s added vigilance, we might 
actually get something done. Thank you. 

Mr. Murphy. Thank you. We all share sentiments. Gentleman 
yields back. 

Now recognize the gentleman from New Mexico, Mr. Lujan, for 
5 minutes. 

Mr. Lujan. Thank you very much, Mr. Chairman. 

Mr. Poneman and Ms. Miller, before I ask some questions on Y- 
12, I want to speak about something that is very important in New 
Mexico. With the concerns in Washington State where tanks at 
Hanford are leaking radioactive and hazardous waste, I understand 
the Department is considering sending millions of gallons of highly 
radioactive waste to New Mexico to be stored at the Waste Isola- 
tion Pilot Plant, or WIPP. I would like to get your commitment 
here today that you will work closely with the New Mexico delega- 
tion, state and local officials, and concerned citizens, as you explore 
whether such a transfer will take place and under what conditions? 

Mr. Poneman. Congressman, I can assure you. A, that we always 
take all critical health, safety, environmental issues into account, 
certainly with respect to the 54 million gallons and their disposi- 
tion at Hanford, and we will gladly continue to work very closely 
with this committee and with other members of the Congress to 
make sure what we do is in full consultation with you. 



46 


Mr. Lujan. So Mr. Poneman, that is a commitment to work with 
the New Mexico delegation on this issue? 

Mr. Poneman. We will work with this committee and with all 
members of Congress, and any affected state 

Mr. Lujan. I will interpret that as a yes. I appreciate that, sir. 

Has there been discussions that have begun with the State of 
New Mexico on this issue? 

Mr. Poneman. I will defer to Ms. Miller. 

Ms. Miller. The acting Assistant Secretary for Environmental 
Management, Dave Huizenga, has ongoing discussions with rep- 
resentatives from the State of New Mexico. I recently met with a 
number of representatives from the State of New Mexico, local rep- 
resentatives as well as the governor. We did not discuss this issue 
because this is a pretty new development, as you know, but we are 
in good, close contact with the delegation, both locally and certainly 
as Deputy Secretary Poneman said, very willing to work and look 
forward to working with you and the other members of the congres- 
sional delegation. 

Mr. Lujan. I appreciate that, Ms. Miller. I am one of the rep- 
resentatives as well that represents New Mexico, and so I would 
appreciate that very much. I appreciate that. 

And finally, I hope that this will not happen at the expense of 
cleaning up existing sites in New Mexico. I don’t want to see a 
slowing down or a decrease in funding in environmental manage- 
ment funding. If anything, it should be increased to allow more 
rapid cleanup, especially in Los Alamos. And you know, with the 
true waste issue in New Mexico, it is ready to be cleaned up and 
ready to go, and I hope that we can work with you and get a com- 
mitment to see what we can do to plus up those accounts. I know 
sequestration is hitting us, but it is something that is very impor- 
tant to us. 

Mr. Poneman. Congressman, sequestration is a huge challenge 
for all of us. We have legal, contractual, and moral obligations to 
the state. We take them very, very seriously. I have been there sev- 
eral times myself. We will continue to take that seriously. 

Mr. Lujan. I appreciate your commitment, Mr. Poneman. 

Mr. Poneman, isn’t your head of Health, Safety, and Security, or 
HSS, the person you and the Secretary rely on for developing and 
coordinating security policy and providing independent oversight 
and enforcement? 

Mr. Poneman. That is true. 

Mr. Lujan. Wasn’t this a colossal failure as a part of HSS in fail- 
ing to identify and correct the specific security weaknesses that 
were obviously present at Y-12? 

Mr. Poneman. Sir, there were a number of failures. There was 
a January, 2009, report from HSS which, in fact, identified some 
of the deficiencies which you have heard later described which, in 
fact, facilitated this terrible episode on July 28. There should have 
been, as HSS has acknowledged, more rigorous, vigorous, and re- 
peated follow-up from those findings, and they have — in the con- 
sequences in terms of lessons learned from this episode, redoubled 
their commitment under the direction of the Secretary to make 
sure that they follow up on all such findings in future. So when 
they do identify a problem, they stick with it until it is resolved. 
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Mr. Lujan. With that being said, Mr. Poneman, aren’t those on 
the second panel, including reviewers like General Finan, who are 
identifying systemic security problems and recommending improve- 
ments, doing the job that HSS was supposed to have done? 

Mr. Poneman. Well, it is always good after an episode like this 
to get fresh eyes, and General Finan, because she had this unique 
perspective of being in the system but somewhat apart from these 
specific events, had a unique and invaluable perspective. In fact, 
her own report recommends that in this three-layer oversight re- 
view, that the HSS is, in fact, that third layer of disinterested third 
party oversight. We will hopefully continue to benefit from outside 
expertise of this character, but also make sure we maintain some 
independence within the Department to ensure you don’t have con- 
flict of interest in overseeing security. 

Mr. Lujan. I appreciate that. 

Mr. Poneman, in your earlier comments made before similar 
hearings, you stated that no federal employees have been termi- 
nated as a result of the Y-12 breach, that such terminations are 
subject to due process. Since there were contract employees that 
were terminated for cause, the response seems to suggest that con- 
tract employees don’t have the same due process protection under 
the law. Is there any truth to that? 

Mr. Poneman. This is — I am glad you asked this question. Con- 
gressman. Let me clarify this. There was accountability on both the 
federal and the contractor’s side. On the federal side — and we had 
to act swiftly and effectively to remove anybody who had an in- 
volvement in this episode from the chain of command. On the fed- 
eral side, the top three nuclear security officials in headquarters 
were removed from those responsibilities. In addition, three mem- 
bers at the site from the federal team were either reassigned or re- 
moved from their positions. And then on the contractor’s side, we 
held accountable by making clear to the contractor that they had 
lost our confidence. The three senior — three of the senior people on 
the protective force subcontract and three of the senior people on 
the M&O contractor, we then folded the subcontract for security 
under the M&O contract, made it clear we lost confidence in the 
contractor, and that contractor was terminated full stop. 

Now there are additional actions that can be taken with respect 
to individuals that are disciplinary in nature. Our first responsi- 
bility, as the chairman and ranking member have emphasized, is 
to protect the material, so the first thing we did is get anybody who 
had anything to do with this out of the way of possibly protecting 
material that we now needed to make sure we had new people and 
new processes to effectuate. Other disciplinary processes have been 
underway. Some are still continuing, and those are the processes, 
sir, that I was referring to where the due process protections apply 
to these individuals who, like any American, are entitled to due 
process when it comes to termination. 

Mr. Lujan. Thank you. Mr. Chairman, as I yield back, I know 
time is expired, but I appreciate the concerns and the statements 
associated with new culture and leadership and changes, and what 
that means coming forward as we look at the future. Thank you, 
Mr. Chairman. 
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Mr. Murphy. Thank you, Mr. Lujan. I let that go on because it 
was a particularly important answer, too. We thank you for that 
answer. 

Now recognize the gentleman from Mississippi, Mr. Harper, for 
5 minutes. 

Mr. Harper. Thank you, Mr. Chairman, and welcome to each of 
you on what is a very important topic, not only to you, but to every- 
one in Congress. We appreciate the look you are taking at this, and 
of course, how do you convey that security is everybody’s concern, 
and always in that situation where you are looking, it seems that 
it was somebody else’s responsibility, so you have to create that 
culture that everyone is responsible, regardless of their position, 
and do you feel like you are moving things in that direction with 
NNSA? 

Mr. PONEMAN. Yes, sir, and your comment, I think, ties in well 
with when the chairman said at the beginning, if you don’t meas- 
ure it, you don’t manage it. What we have done since the Y-12 epi- 
sode is to make sure that in the performance evaluation plans for 
all contracts that safety and security is made a constituent part of 
every programmatic deliverable. So you are not actually performing 
the job if you do it, but you don’t do it safely or you don’t do it se- 
curely. So that is how we measure and hold people accountable, 
and so not only are we trying to do this through all the cultural 
teaching that we are telling you about, but we are trying to build 
into the structure of the contracts. That is how we hope to avoid 
keep coming back, as Ms. DeGette has suggested, by really building 
it into our system. 

Mr. Harper. And I guess one of the issues would be how do you 
make these security changes or improvements, how do you sustain 
those? You know, I will go back, DOE did a major — a comprehen- 
sive study back in 2008, and it looked like that was great. If those 
things had perhaps really been sustained, maybe we wouldn’t have 
had the Y-12 incident. So I guess what confidence should we have 
and do you have that these changes, as a result of this very exten- 
sive 90-day evaluation and study, will be sustained? 

Mr. PoNEMAN. Congressman, as General Finan’s report makes 
clear, even if we have put all the structures in place to be success- 
ful in a way that we have not succeeded so far, absent leadership, 
it is not going to succeed. So the first way to sustain it, sir, is by 
sustained leadership attention, and I can commit to you that that 
is what we are providing. 

The second thing I would say is, it is not enough simply to pro- 
mulgate this and announce it. We have to continue to work with 
people in the complex at the sites and have a continuous flow of 
information back and forth. 

And the third thing is, people have to feel comfortable through- 
out the site. If they actually have concerns, they have to feel free 
to step forward without any fear of retribution. 

Mr. Harper. Thank you. 

Do either of the other witnesses have anything that you care to 
add? General, anything that you see of how this study — how you 
believe it would be sustained in the future? It looks great today, 
and we believe we have done that, but do you see anything else. 
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other than what Mr. Poneman has added, that you believe would 
show that we could sustain it? 

General Finan. The key is the leadership, just the Deputy Sec- 
retary stated, and a culture. Everyone in the organization has to 
understand that each and every one of them are a part of security, 
and that security is a part of the NNSA mission. It is not a support 
item, it is essential to the mission. So it is culture and leadership. 

Mr. Harper. Mr. Poneman, the safety and security reform plan, 
if I could read this, stated that the Department’s contractors main- 
tain an assurance system that provides reliable measurement of 
the effectiveness of their safety management systems and facili- 
tates timely corrective actions to systems or performance weak- 
nesses. And the same direction was given for security systems. The 
task force found that NNSA relied overwhelmingly upon contractor- 
provided data rather than effectively reviewing performance itself 
Given the broken equipment, security cameras, excessive false 
alarms at Y-12, clearly the contractor did not correct performance 
weaknesses in a timely fashion. And I know you have gone over 
this, but I want to make sure, you believe that relying on contrac- 
tors to provide measurements of their effectiveness is still a sound 
approach? 

Mr. Poneman. I think the system must start because they have 
the line management responsibility with contractor reporting and 
self correcting, but it then needs exactly the oversight that General 
Finan recommended, number one, from the nuclear security oper- 
ation inside NNSA, which is not at the site and therefore it is not 
prone to the coziness that has been a source of some concern, and 
then secondly, with a third party independent oversight from the 
HSS organization. 

Mr. Harper. Each of you, do you believe that today would such 
a breach at Y-12 that occurred in July of 2012, do you believe that 
would occur today? 

Mr. Poneman. No, sir, I do not, and one thing that we did imme- 
diately, the Secretary directed an extent of condition review to be 
done very quickly to ensure that no similar problems existed at any 
of the other sites that have Category I nuclear material in the com- 
plex. 

Mr. Harper. I yield back. 

Mr. Murphy. The gentleman yields back. 

The gentleman from Texas is recognized for 5 minutes. 

Mr. Green. Thank you, Mr. Chairman. 

Mr. Murphy. The gentleman Mr. Green from Texas is recog- 
nized. 

Mr. Green. Different member from Texas. 

I know there was some contract restructuring in 2007, and I 
guess what got my attention on Y-12 and also the Pantex site, 
since that is in north Texas, was that contract restructuring ever 
completed to have one contractor for both sites? 

Mr. Poneman. Yes, sir, we have finished the contract consolida- 
tion. There is another piece that is optional with respect to folding 
the tridium operations at Savannah River, but that part has 
not 

Mr. Green. I know on a regular occasion, Pantex — there are pro- 
testers up there, but it is a long way to get there from most urban 
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areas in north Texas, but there has never been any similar inci- 
dents like at Y-12 at Pantex, has it? 

Mr. PoNEMAN. Not that I am aware of, sir, and in fact, we were 
impressed when we looked after the Y-12 incident at, frankly, the 
contrast and we brought some expertise from Pantex to Y-12 to 
help instill some best practices. For example, the practice of repair- 
ing cameras very quickly, that was already institutionalized at 
Pantex, and now I am happy to say, all the cameras are fixed and 
our average time to repair cameras now at Y-12 is 6.5 hours. So 
there were some best practices that we ported over from Pantex. 

Mr. Green. OK. I worry about impacts on NNSA due to the se- 
quester. Deputy Secretary Poneman, can you talk about the im- 
pacts that sequestration may have on federal and contractor per- 
sonnel at NNSA? 

Mr. Poneman. Yes, I will let Acting Administrator Miller offer 
more detail, but top line is it is a significant effect involving per- 
sonnel and operations as well, but I can assure you. Congressman, 
is that the directive from the President is to do everything that we 
can and must do to protect our core functions. But I will ask Ms. 
Miller if she has got elaboration. 

Ms. Miller. I would just add to that. It starts with of course, 
we will protect the material, of course, we will do things safely. As 
long as we are allowed to operate, that is exactly how we will run 
things. Having said that, I think people have a tendency to look at 
sequestration in terms of numbers of people who might be fur- 
loughed or dollar numbers that might be missing. It is — what is a 
deeper concern at this point is the ongoing disruption to activities 
that will take projects and programs and make them difficult, if 
not impossible, to actually execute anywhere near to the plan and 
to the price and the need that has already been described. It is that 
ongoing uncertainty disruption, and then lack of ability to plan. 

Mr. Green. And I know that is impacting your agency, but it is 
also impacting 

Ms. Miller. Everybody. 

Mr. Green [continuing]. Everybody. 

Have you already notified employees or contractors on they could 
face personnel actions? 

Ms. Miller. Contractors, their own organizations are responsible 
for talking directly to their employees, because they operate in gen- 
eral off of the money they are getting for us. We have, of course, 
worked with them to try to plan and program dollars so that they 
have some sense of what it is going to look like going forward 
month by month, and they are making plans and doing notifica- 
tions accordingly, and I know our contractors have done that. 

As far as the federal workers are concerned, I sent a note out to 
our federal workers 2 weeks ago, almost 2 weeks ago, to let them 
know that we will do everything we can, but I cannot guarantee 
that it is not going to affect them either. 

Mr. Poneman. And I would only add. Congressman, that I have 
notified all the affected governors, and we will also work with the 
states in the same vein. 

Mr. Green. OK, thank you, Mr. Chairman. 

Mr. Braley. Would the Texas gentleman yield? 

Mr. Green. Sure. 
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Mr. Braley. Mr. Chairman, Ms. Miller, a number of reports ob- 
served a culture within NNSA of prioritizing costs, cutting costs 
above the needs of security. As a follow-up to the question Mr. Bar- 
ton asked, have M&O contractors throughout the complex been told 
to cut their security costs? 

Ms. Miller. They certainly have not been told to cut their secu- 
rity costs as any means of a policy, but I would say there is defi- 
nitely messages that get communicated that when money is tight, 
people are looking for ways to cut costs and within an individual 
organization, a contractor organization are working with federal 
people, they may, as General Finan said, start to make decisions 
at very low levels on what their interpretation is of the need to cut 
costs. 

Mr. Braley. So it sounds like they could have been cut, so as a 
follow-up, have security funding allocations been reduced in recent 
years before the incident? 

Ms. Miller. Security allocations have come down over the last 
several years, that is right. 

Mr. Braley. Mr. Chairman, this is a concern I think that we 
had. Mr. Barton asked a similar question, and hopefully it is some- 
thing that we can pursue. You know, I would be interested if secu- 
rity funding has been increased after the incident as well, but I 
think we will find that out later. 

Thank you, Mr. Chairman. 

Mr. Gardner [presiding]. Thank you. Gentleman yields back. 

Gentleman from Texas, Dr. Burgess, is recognized for 5 minutes. 

Mr. Burgess. Well on the GAO report that was supplied for this 
hearing, there is a table, table one on page nine of the report, and 
you know, it is interesting in light of the last question that was 
just asked about the funding levels. I mean, this is a comparison 
of a GAO study done in May of 2003 and then the security task 
force in February, 2013, so essentially a decade worth of NNSA 
oversight. And you look at the various things that are listed there, 
the last one being allocating staff. In 2003, the GAO found NNSA 
had shortfalls in its site offices in number and expertise of staff, 
which could make it more difficult for site offices to effectively over- 
see security activities. OK, that sounds like a real problem identi- 
fied by the GAO. So what did General Finan find 10 years later? 
The NNSA security function is not properly organized or staffed. It 
sounds like the same problem to me, stated another way. 

So you know, as interesting as this chart is, it really shows that 
the General Accountability Office’s review of the NNSA security or- 
ganization, when you look at it and go down the list and see the 
problems with defining clear roles and responsibilities, assessing 
site security activities, overseeing contractor activities, allocating 
staff in each and every case. 

So General Finan, you know, it begs the question, it is almost 
every problem that was identified 10 years ago, you encountered on 
your task force 10 years later. So what do you think? Are these 
longstanding cultural problems that are ingrained in the organiza- 
tion, or are these things that can be corrected? 

General Finan. Clearly they are long-term cultural basic issues 
that need to be fixed. And what happens over the years, as we 
looked at each one of those, reports would come out and people 



52 


would check the box and say yes, I took care of the findings. What 
happened was people were nibbling around the edges, you know, 
they would put a body or two — oK, you have a shortage, so a body 
or two would change. You know, that would just create a shortage 
someplace else. They didn’t ever stop and take a look at the overall 
system. How are we going to fix this long term? So by nibbling 
around the edges, instead of getting at the core issues, they just 
perpetuated the issues for a decade, and probably even longer than 
that, but every report that we looked at had striking similarities 
to what we found. 

Mr. Burgess. So let me just ask you this. This is a basic ques- 
tion. How is putting more money into a structurally deficient sys- 
tem, how is it going to make it better? I mean any amount of 
money — I agree that, you know, it is reasonable to look the funding 
levels, but for crying out loud, we have known about this stuff for 
10 years and you haven’t fixed it. 

General Finan. And fundamentally, you know, that is why I pro- 
pose a change in the organization and change in the assessment 
model. Now I think that there are minor increases in budget that 
might be required, but we are not talking about, you know, hey, 
let’s add a billion dollars to the security budget, because the issues 
that surfaced at Y-12 were structural within the organization and 
structural within the assessment model. Now there are other tech- 
nical aspects of why the guard didn’t respond properly, a whole 
bunch of things like that that are training related and things like 
that, but we are — when we are talking about the organizational 
structure, we are talking about some bodies. Yes, there is a short- 
age of security professionals, so you are talking a small number of 
additional bodies, and with the assessment model, you are talking 
about beefing up and changing the assessment model, but you are 
not talking about a massive influx of dollars. 

Mr. Burgess. Well, Chairman Upton in his opening statement 
said we need to learn the right lessons from past mistakes. I now 
certainly thank you for the effort that you have put into this. I just 
pray that 10 years from now another Congress is not having an- 
other hearing over the same sorts of failures. 

So Secretary Poneman, let me ask you. Back in 2010, Chairman 
Emeritus Barton was ranking member. He and I wrote to the Sec- 
retary expressing our concerns that the safety and security reform 
initiative would weaken outsource by outsourcing safety and secu- 
rity. We requested the General Accountability Office to evaluate — 
actually Chairman Waxman, who was chairman at the time and 
Ranking Member DeGette did join in that letter, so given the trou- 
bled history of safety and security in the complex, NNSA’s prob- 
lems of implementing its own security program, what was the De- 
partment’s justification for embarking on this project? 

Mr. Poneman. It was clear at the time. Congressman, that we 
needed to focus, and you know the old saying, “If you don’t know 
where you’re going, any road will take you there.” So when I ar- 
rived at the Department, there were many people saying many dif- 
ferent things. We said let’s sit down and figure out what are we 
doing to be safe, what are we doing to be secure? That was the gen- 
esis of that reform. Our management principles say we will only 
succeed by continuous improvement. This was part of that process 
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so it wouldn’t just be mindlessly continuing to check the box, but 
being vigorous and aggressive and saying how do we be safe? I 
couldn’t agree more with you, Congressman, in your premise that 
it ain’t just throwing dollars at it, it is a deeply cultural thing, and 
that reform, which I know people have had some concerns about, 
was intended to be exactly part of the process that you are advo- 
cating in terms of a self-vigorous analytical process to get safe and 
to make people wake up, think, and be active about it. 

Mr. Burgess. Well, Mr. Chairman, I have got additional ques- 
tions. I will submit those in writing. I thank you for the indul- 
gence, and I will yield back. 

Mr. Gardner. Thank you. Gentleman yields back and the chair 
recognizes himself now for 5 minutes. 

General Finan, a question to you. In your testimony, you write 
that the NNSA is structurally inadequate to address security 
needs. You have made your recommendations. What percentage of 
those recommendations have either been implemented or on their 
way to implementation? Just give me a number, if you could. 

General Finan. At the time I left the organization, all of the rec- 
ommendations were in process of being implemented. 

Mr. Gardner. Thank you. 

Additional questions to Ms. Miller, and this question was ref- 
erenced earlier. The statement that Mr. Don Cook, NNSA Deputy 
Administrator for Defense Programs had made earlier, he said with 
regard to the relationship that we have and where we are between 
NNSA and its labs and plants, the statement was made “eyes on, 
hands off.” And I think one of the concerns that we have is this 
isn’t just about management; this is about leadership, a culture of 
safety and security. And I am very concerned when it comes to the 
approach that NNSA, when they talk about “eyes on, hands off,” 
that this is actually a management style that is failing to provide 
the kind of leadership we need in safety and security. Would you 
agree or disagree with that? 

Ms. Miller. I think what is failing and what has failed is some- 
thing I spoke a little bit about earlier, and that is it is one thing 
for people at a very senior level to talk at a very senior level and 
come out with phrases that they perfectly understand and they 
may be able to explain to the seven or eight people they talk to all 
the time about it. That is a very different thing if you are the per- 
son six, seven, eight layers down to understand what does that 
mean for the job you do every day? 

Mr. Gardner. And so you can see how that kind of creates a cul- 
ture, though, that doesn’t focus — that focuses more on management 
and less on leadership of a culture that is truly about safety and 
security. 

Ms. Miller. I think what happens is it leads everybody to focus 
whatever way they can to cope with what they think the person at 
the top is trying to tell them. 

Mr. Gardner. So what are you going to do to make that that is 
different? 

Ms. Miller. So as you know, right now I am acting adminis- 
trator. What we have already begun in NNSA is a change in both 
the way we talk to staff and our contractors from the lower levels 
all the way up through the very top levels to be able to allow peo- 
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pie to understand how they do — how they are meant to do what 
they do in a safe and secure way, and to understand that safety 
and security is not the joh of the people — it is not just the job of 
the people in the uniforms or the guys who can discuss criticality 
safety in depth, it is everybody’s job. It is what you do every day 
as part of what else you do every day. 

Mr. Gardner. Recognize it is about the leadership, not just man- 
agement. 

Ms. Miller. Absolutely. 

Mr. Gardner. General Finan, in your testimony, you talked 
about tension between security and the conduct of operations, stat- 
ing that the events at Y-12 illustrate how far the pendulum has 
swung too far in the wrong direction, and that NNSA must clearly 
and consistently emphasize the importance of security. Do you be- 
lieve the tension between security and operations is inescapable, or 
do you think that strong safety and security culture can facilitate 
improved operations performance, given committed leadership? 

General Finan. I absolutely believe that safety and security can 
make operations better, and depending on how they are integrated, 
you will have a better operation. But it is a cultural change and 
it is a difficult cultural change. 

Mr. Gardner. Is the agency right now on the way to that cul- 
tural change? 

General Finan. They are trying to make that cultural change. 
Again, it is a long term. It will take years and constant pressure, 
constant attention. 

Mr. Gardner. Adequate progress, in your mind? 

General Finan. They are making early steps. Early steps. It is 
going to take a long time. 

Mr. Gardner. But adequate process not quite ready to say that? 

General Finan. I am not quite ready to say that. 

Mr. Gardner. Ms. Miller, do you agree with General Finan that 
there has been a culture of compromise at NNSA? 

Ms. Miller. Yes. 

Mr. Gardner. And what are you doing to eliminate that culture? 

Ms. Miller. That is a culture that I think not intentionally, but 
definitely effectively, has permeated both the contractor and the 
federal side of it, and that is a question of leadership making clear 
what the expectations are for all concerned. 

Mr. Gardner. And you believe you have taken the sufficient 
steps so that your senior managers understand that there must be 
consistent messaging on security? 

Ms. Miller. I think through a number of actions that have been 
taken, including the shakeup in management of security, that mes- 
sage has been very clearly communicated as to what is expected of 
everyone. 

Mr. Gardner. And can you tell the committee today, all of us on 
the committee, that the head of defense programs, the head of the 
budget, the federal site managers, your managers, all are now sing- 
ing from the same hymnal, so to speak? 

Ms. Miller. I can tell you that they know they better be. I can’t 
swear for another person, but I believe it to be the case. 

Mr. Gardner. And have you committed — this information that 
you are talking about now, you have communicated it simply — sup- 
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ply the committee with memoranda or other communications insti- 
tuting your policy for emphasizing that security? 

Ms. Miller. Yes. 

Mr. Gardner. Thank you. I appreciate your time, and with that, 
I don’t see any other witnesses, so I will give the gavel back to the 
chairman. 

Mr. Murphy. Thank you. 

We are going to dismiss this panel and move on to the next one. 
I do want to thank you all for your candid and thorough response, 
and this is extremely important to see leadership being honest with 
us. So we look forward to working with you more and talking with 
you more, and General, a special thanks to you for your report. 
Good luck over there, keep that Air Force in line. Thank you, 
ma’am. 

We will wait for the next panel to come forward. 

Ms. DeGette. Chairman, maybe we can just put her in charge 
of everything. 

Mr. Murphy. Well ma’am, I am Navy so we will have to discuss 
that. 

Well, while this next panel is getting ready, I will start off by in- 
troducing them in the interest of time as we move forward. We 
have with us Mr. C. Donald Alston, Major General, United States 
Air Force (retired), and former commander of the 20th Air Force 
Global Strike Command, and Commander Task Force 214 U.S. 
Strategic Command, Francis E. Warren Air Force Base in Wyo- 
ming. We also have Mr. Richard Meserve — am I pronouncing that 
right, sir? 

Mr. Meserve. Meserve. 

Mr. Murphy. Meserve, thank you. President of the Carnegie In- 
stitution for Science, and former Chairman of the U.S. Nuclear 
Regulatory Commission from 1999 to 2003. We also have Mr. David 
Trimble, the Director of Natural Resources and Environment 
Team, Government Accountability Office. Welcome here today. 

As you know, the testimony you are about to give is subject to 
Title XVIII Section 1001 of the United States Code. When holding 
an investigative hearing, this committee has a practice of taking 
testimony under oath. Do you have any objection to testifying 
under oath? 

They all agree to testify. The chair then advises you that under 
the rules of the House and rules of the committee, you are entitled 
to be advised by counsel. Do you desire to be advised by counsel 
during your testimony today? 

They all decline counsel. 

In that case, if you would please rise, raise your right hand, and 
I will swear you in. 

[Witnesses sworn.] 

Mr. Murphy. Thank you. I note for the record all the witnesses 
have answered in the affirmative. 

You can now give a 5-minute summary of your written state- 
ment. We will start with you. Dr. Meserve. 
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TESTIMONY OF RICHARD A. MESERVE, PRESIDENT, CARNEGIE 

INSTITUTION FOR SCIENCE; C. DONALD ALSTON, MAJOR 

GENERAL, USAF (RETIRED); AND DAVID C. TRIMBLE, DIREC- 
TOR, NATURAL RESOURCES AND ENVIRONMENT TEAM, GOV- 
ERNMENT ACCOUNTABILITY OFFICE 

TESTIMONY OF RICHARD A. MESERVE 

Mr. Meserve. Mr. Chairman, Ranking Member DeGette, and 
members of the subcommittee, I am very pleased to appear before 
you this morning to testify of the security at DOE complex. 

My involvement with this issue, and I believe General Alston’s 
as well, arose as the result of a request that was made by Sec- 
retary (ilhu that we, as well as Dr. Norm Augustine, undertake an 
evaluation of basically the structure for the management of secu- 
rity at DOE. We undertook a study that involved visiting sites, re- 
viewing documents, interviewing people, and as a result of all of 
that effort, we submitted three separate letters to the Secretary on 
December 6 of 2012, and we have submitted copies of those letters 
for the record as our testimony. 

We did not purport to investigate the factual circumstances sur- 
rounding the Y-12 institute. Our reports focused on management- 
related issues, and I hasten to add that our report was a snapshot 
in time. I was learning a lot about what has happened at DOE 
since we conducted our interview from the very informative testi- 
mony that we have all benefitted from earlier this morning. 

There are a couple of points from my letter that I think I would 
like to emphasize that I see as clear issues that DOE should con- 
front. I believed that on December 6, and I believe they are con- 
fronting them. One, and I think a critical one, is to make sure you 
have a management structure in place that assigns clear authority 
and responsibility for security. One of the underlying factors at the 
Y-12 incident is there was a division of responsibility and without 
anyone being truly in charge until you had a situation with a con- 
tractor responsible for the guards and a different contractor respon- 
sible for the security-related equipment and the cameras, and they 
weren’t communicating well and a lot of the equipment was out of 
service and each could point at the other. 

I also came to the conclusion — and I will let General Alston 
speak for himself — that the federal oversight needed to be im- 
proved. It was — serious security issues existed before this episode 
and no one at DOE that we saw was really on top of detecting 
them and correcting them. 

There was issues associated with the protective force, ensuring 
appropriate training. There was an issue associated with the, obvi- 
ously, the behavior of the first responder. There were many issues 
associated with the protective force that need to be addressed. We 
need to find a clear trajectory for these people. We need to make 
sure that they have a sense that they are an important part of the 
team and integrated with the team. 

I think that all of us came to the view — and this has been em- 
phasized this morning — that one of the things needs to change is 
the culture. There has to be a security culture that places both 
safety and security as highest priorities, and that management by 
its word and deed reinforces that, and that everyone at the site re- 
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alizes that it is their individual responsibility to assure security, 
and that clearly is something that has been failing. 

And finally, I think what I would add is a need for balance. 
Clearly, this episode reflected issues associated with physical secu- 
rity, but there are other security issues that confront the Depart- 
ment, and in order to recognize, you need a balance. There are 
cybersecurity issues, there are personnel security issues, all of 
which need to be functioning, and one ought to not, because it was 
an episode of physical security, focus solely on that. 

My views are explained more fully in the letter that was sub- 
mitted as part of the record, and I welcome the opportunity to talk 
to you this morning. 

Mr. Murphy. Thank you. General, I promised you I would have 
you go first. I apologize for the confusion there, but you are recog- 
nized now for your opening statement. 

TESTIMONY OF C. DONALD ALSTON 

General Alston. Mr. Chairman, Ranking Member DeGette, 
members of the subcommittee, I would only briefly amplify what 
my colleague has so well described as Mr. Augustine’s, Dr. 
Meserve’s, and my efforts on behalf of Dr. Chu and the Department 
of Energy. I would only amplify one particular point, and that 
would be the culture piece. 

We have talked this morning — the first panel engaged you in 
conversation using some of the expressions that we found to be of 
concern, “eyes on, hands off’ for example, and that expression is 
something that came out of just the last couple years of policy 
changes. But as has been reinforced over and over again, the recur- 
ring challenges, the similar recurring challenges, go beyond the 
“eyes on, hands off” policy emphasis that had occurred over the last 
years, and I think that at the center of the challenge for the De- 
partment is the cultural change. And one aspect of the cultural 
change that is — that feeds the cultural challenges is the distributed 
management, the way the Department distributes its management 
across its labs, and the labs prefer and are very successful in their 
pursuit of the distance between the headquarters and the labs 
themselves, and the freedom of movement that they have, and this 
has great value, I would concede, on the science piece, but I think 
that that contributes — the security, in fact, needs to have more cen- 
tral — management central emphasis, common standards, and what 
I have observed is that you see people talk about mission, which 
I read as science. People talk about safety, and there is more of a 
pervasive safety culture, if you will. But security is not everybody’s 
responsibility, and it is as if mission, safety, and security are in a 
trade space where when there is an emphasis on security because 
of an episodic failure, the other elements of mission and safety see 
the focus on safety as to be marginally at the expense of the other 
parts of the mission, as opposed to looking at it as an enterprise 
challenge, and that, in fact, they don’t share trade space with each 
other, but in fact, are all essential every day to mission success. 

And with that, I thank the committee for the opportunity to have 
dialogue this morning. 

[The joint prepared statement of General Alston and Mr. 
Meserve follows:] 
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Mr. Chairman, Ranking Member Diana DeGette, and members of the subcommittee, we 
thank you for the opportunity to appear before you today. 

With the subcommittee’s permission, we would like to submit as our statement three separate 
letters authored by Mr. Norman Augustine and ourselves. These letters were submitted to 
Secretary of Energy Stephen Chu concerning the management of physical security at the 
Department of Energy Category 1 nuclear facilities. In October 2012, Secretary Chu asked the 
three of us to consider a variety of management models and to provide separate, individual 
observations regarding management structures that might be appropriate for application across 
Department of Energy and, specifically. National Nuclear Security Administration sites. We 
provided our respective letters to Secretary Chu on December 6* of last year. 

We would like to provide some context about our assessments. While Secretary Chu did not 
ask us to investigate the Y 1 2 security breach, we used that incident and resulting investigations 
as an entry point into a larger examination of the management system. Additionally, we were 
exposed to draft corrective actions resulting from those investigations, but we did not evaluate 
these measures or their implementation across Department of Energy and the National Nuclear 
Security Administration. Finally, our written assessments were informed by our direct 
engagement during a brief seven-week period last fall, culminating in early December. We are 
not up to date with regard to any changes that have been introduced. Nonetheless, we hope that 
our observations are helpful to you. 

Thank you for the opportunity to appear today before the subcommittee, and we welcome your 
comments and questions. 
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C. Donald Alston 
1515 North Star Loop 
Cheyenne, WY 82009 
December 6, 2012 


The Honorable Steven Chu 
Secretary of Energy 
U.S Department of Energy 
1000 Independence Avenue, SW 
Washington, DC 20585 

Dear Secretary Chu: 

In light of the perimeter security breach at the Y-12 National Security Complex (Y-12) in July 
2012, you asked me to examine a variety of organizational constructs for physical security and to provide 
you with observations on the value of transitioning to a common model. 

My observations have been informed by reviewing the considerable body of work that has been 
done on this subject over the past decades; through interviews and discussions with current and former 
DOE leaders, as well as experienced leaders outside of DOE; and by a number of site visits. I was able to 
visit DOE headquarters (HQ), Y-12, Pantex Plant, Sandia National Laboratories, Los Alamos National 
Laboratory, Savannah River Site, and the Calvert Cliffs commercial nuclear power plant in Lusby, MD. 
The site visits enabled discussion with maintenance and operations (M&O) contractors, DOE overseers, 
and protective force management and members, including union leaders. A very candid exchange at all 
levels with dedicated, experienced professionals greatly aided the effort. 

Four physical security organizational models were reviewed: 1 ) a proprietary protective force 
organic to the M&O contractor responsible for site operation; 2) a protective force subcontracted to the 
M&O contractor; 3) a federalized protective force; and 4) U.S. military forces. Three of these four 
models are currently functioning within DOE/National Nuclear Security Administration (NNSA); 
however, none of the four emerges as attractive long term, department-wide option without addressing 
systemic impediments that preclude effective change. 

On the grandest scale, there were indications that security was viewed as the responsibility of the 
protective forces alone rather than as the responsibility of each member of the work force. While this 
culture may not be widespread throughout the DOE complex, it is clear that leadership could further 
emphasize the need to view security of our nation"s sensitive nuclear materials as a shared commitment 
across the work force. The Department of Energy is responsible for America"s nuclear enterprise, and 
enterprise credibility is derived from the trust and confidence our citizens, national leadership, friends, 
and allies have in the Departmenfs ability to maintain a safe, secure and effective U.S. nuclear weapons 
complex. Importantly, this credibility factors into the daily calculus of potential adversaries and 
contributes directly to achieving an effective deterrent posture, a commodity re-eamed every single day. 
A pervasive culture in which each member of the natiorf's nuclear weapons complex recognizes the vital 
role he/she plays in assuring both security and safety contributes directly to maintaining that credibility. 

As currently structured, no recognizable critical path exists between DOE HQ and the site 
security organizations to ensure daily security success. Study of a variety of DOE and NNSA 

This updated version (dated December 10th) of the original letter contains minor clarifying edits. 
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organizational charts could not demystify where authority lies. The Department struggled to articulate 
how information flows - both up and down - between the sites and DOE HQ and could not easily provide 
a depiction of that process, I think this environment contributes to the reality that nuclear material at 
Savannah River Site - which falls under DOE"s Environmental Management (EM) office - can be 
secured with different standards and policies than those required at NNSA sites. The category of material 
should drive security requirements, not the organizational chart. 

Distance has been growing between the headquarters and the sites, a trend that follows a DOE 
legacy of decentralized management across its facilities. While this traditional arrangement may pay 
dividends for the department in many respects, security is not one of them. Recent efforts to revise 
DOE”s safety and security directives and modify the department' 's oversight approach to provide 
contractors with the flexibility to tailor and implement safety and security programs without excessive 
federal oversight or overly prescriptive departmental requirements, as well as NNSA"s “governance 
transformation" that increased reliance on contractors self-oversight through its contractor assurance 
systems, have fortified sites" sense of independence and distance from the HQ. Sites leverage their 
unique missions and geography to justify a preferred “alone and unafraid” mantra, and the HQ has 
employed a largely “hands off’ response. 

Mutual distrust is bred as HQ personnel in key security roles are viewed as inexperienced 
regarding security matters and too far removed from the site to understand the uniqueness of local 
challenges. Key leaders must have credible security experience - especially since there is little to no 
assignment circulation of security personnel to and from the HQ; no missionaries emerge to bridge the 
gaps in trust. 

What little leverage the HQ has comes in the form of additional inspections and assessments - 
“black hat" interactions that further contribute to adversarial relationships. Inspection is an absolutely 
essential tool to validate compliance and operational readiness. However, it should be one dimension of a 
composite assessment process. Depending too much on snapshot assessments and not developing the 
right metrics to measure daily readiness would provide leadership little satisfaction regarding the true 
state of security preparedness and program execution. 

Further, there is a perception that corporate security policy is being written from inspection 
results. If true, the Department risks drifting from measuring original standards to an environment where 
sites lack confidence in the integrity of the inspection process as they perceive they are chasing the latest 
inspection results. In the DOE/NNSA HQ construct, a dynamic or volatile policy environment led by 
DOE''s Office of Health, Safety, and Security (HSS) risks marginalizing NNSA security responsibilities. 
Of course, even if these site perceptions are inaccurate, leadership needs to be sensitive to these 
atmospherics. 

Communication is an area ripe with opportunity. Given today's environment where sites seem to 
prefer to operate independently, where there is no effective best practice/lessons learned dialogue between 
sites, no program for security information exchange with the Department of Defense (DoD) or 
commercial nuclear activities, it is not surprising that site fecility staffs can and do conceive, design, 
develop, test and deploy modifications to security systems. To better understand and share risks 
associated with changes to security systems there could be a normalized process over watched by DOE 
HQ, leveraging a revitalized Sandia expert review, with hard requirements for developmental and 
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operational testing and red teaming that could methodically deliver security modifications ready on day 
one. 

In my final analysis, the NNSA Administrator must always be able to answer the following 
questions; 


- How ready are we today and how do we know? 

- How ready will we be in 6 months and how do we know? 

A variety of sources produce the set of ingredients that create the mosaic of indicators conveying 
the current and future state of the security program. Timely, balanced reporting, where good news travels 
fast and bad news faster, not only provides content, but also serves as a barometer for the quality of the 
self-critical culture. Quality metrics that provide both tactical and operational level content, deliver 
today's picture and, measured over time, expose trends and opportunities for course corrections. 
Collaboratively developed metrics, together with processes that actively seek input where appropriate on 
policies and standards also builds trust. Checks and balances in development of new or improved security 
capabilities, to include external review processes, provide corporate-wide awareness and ensures sites 
have support during transitions. A comprehensive human capital development program creates career 
paths at all levels and could provide for circulation up and down the chain, all the while driving greater 
security competency across the enterpri.se. 

Based on discussions over the past two months, the attributes of the objective security 
organizational construct should include: 

1) A force with a mission focus that understands the vital interdependencies and coordination 
required at all times with the M&O contractor; 

2) A well-trained, disciplined force whose professional conduct during routine operations is 
dependable and above reproach and one that is prepared to use lethal force if required during 
emergency operations; 

3) A force conditioned and incentivized by leaders at all levels to provide timely reporting; 

4) A force that would help drive crosstalk across DOE sites, outside the department such as 
with the DoD, and with commercial nuclear businesses to benefit from others" lessons 
learned; 

5) A force with an absolute intolerance for compensating for shortfalls/deficiencies/outages 
one minute longer than necessary; 

6) A force that knows - based on facts - how ready it is today and leaders who know how 
ready it will be 6 months from now; 

7) A force not remotely prone to work stoppage as a job action; and 

8) A force that understands the merits of centralized control and decentralized execution of 
security responsibilities. 
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Of all the candidate security organizational models 1 examined, the military model is the least 
attractive to me to meet DOE/NNSA needs. The advantages include a dependable, high-quality, rotating 
force that would routinely be refreshed to meet mission demands of a typically non-dynamic 
environment. However, the lack of continuity would produce a force less familiar with the site than other 
models, and transitory leadership will have to adapt to a relatively unfamiliar mission (enriching uranium, 
for example). The most significant disadvantage is the division of unity of command by the introduction 
of a substantial command and control seam between protective forces and site operations with the arrival 
of Department of Defense onto the DOE/NNSA playing field. Would there be any risk that geostrategic 
instabilities might make these war fighting forces the first to be redeployed abroad, driving challenging 
domestic security contingency plans? 1 do not see an effective role for a DOE/NNSA representative in 
this model. 

The proprietary guard force, which has security personnel organic to the M&O contractor 
operating the site, provides the cleanest unity of command option. The risk of security work stoppage 
seems less likely in this model than other contractor options. Poor performers can be removed with ease. 
The drawback to this option is the uncertain security competencies of potential M&O contractors. This 
model is a variation on the status quo where a DOE/NNSA security representative provides oversight of 
the security elements of the M&O contract. 

The model in which the protective forces are part of a company subcontracted to the M&O 
contractor has a mixed record. There is a history of work stoppage. There is a manageable seam as far as 
unity of command is concerned. History shows this model can provide a disciplined, professional force 
with valuable continuity and familiarity with the site. (1 would note here that military experience probably 
makes up between 50 and 75% of the force, though most of those veterans have no nuclear security 
experience upon arrival. Good orientation and training programs make up for this significant deficiency 
and ensure those with and without military experience are prepared to provide effective security.) At Y- 
12, the maintenance function was not owned by the protective force which may have contributed to 
improperly prioritized maintenance of security gear, which ultimately resulted in failure. Overcome this 
specific contract deficiency and this model will present less risk than it currently does. This model is a 
variation on the status quo where a DOE/NNSA security representative provides oversight of contract 
execution by the sub-contractor. 

The model I find the most attractive is the federal model. It is proven, working effectively in the 
DOE/NNSA transportation business providing for a disciplined professional force. It precludes work 
stoppage risk. True, adverse actions are less swift than the contractor models and this approach does 
introduce a seam with the M&O contractor. However, this mode! is a substantial departure Ifom the 
status quo and what you trade in local unity of command you gain in more effective corporate oversight 
of security operations. 1 see the role of the DOE/NNSA security representative as the leader of the site 
security forces and the key integrator with the M&O leadership. The long term culture shift this model 
could drive should be weighed positively in an organizational change decision. 

For your consideration. Admiral Mies oversaw an in-depth study of DOE security in April 2005, 
“NNSA Security: An Independent Review.” 1 think a hard-hitting, „show me" re-assessment of the 
status of his recommendations would benchmark the state of your self-critical culture and prove very 
helpful to the Department. 
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All members of your Department rapidly responded to requests for information and made time for 
discussions at my convenience. Everyone I met, both the contractors and Department personnel, were 
forthright, professional, and dedicated to mission success. 

I am honored you asked me to support this important project. Thank you. It was a great 
experience working with the men and women of your Department. And thank you for providing the 
support of the talented members of Center for Strategic and International Studies. I could not have 
produced this work without their tireless support. 


With great respect, 




,/ 


C. DONALD ALSTON 
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NORMAN R. AUGUSTINE 
6801 Rockledge Drive 
Bethesda. MD 20817 
Tel. 301-897-6185 Fax 301-897-6028 
nonii.augusHne@linco.coin 


December 6, 2012 


The Honorable Steven Chu 
Secretary of Energy 
U.S. Department of Energy 
1000 Independence Avenue, SW 
Washington, DC 20585 

Dear Mr. Secretary: 

This letter responds to your request that I assess certain physical security shortcomings 
experienced by the Department of Energy (DoE), most prominently at the Y-12 National 
Security Complex (Y-12), and provide observations, findings and recommendations. 

Given the relative short amount of time available for this review, my recommendations are 
more in the form of suggestions; however, they are based on over a half-century of 
managing at all levels in large organizations. I have drawn upon lessons gained during the 
ten years I devoted to government service, including several years as Under Secretary of 
the Army, and a number of years as CEO of an organization with over 180,000 employees, 
many working on sensitive national security systems. Further, in keeping with your 
request, 1 have been extremely candid in my assessments, which in no way suggests any 
diminishment in my overall respect for the people who are charged with such enormous 
responsibilities as are those in your Department. 

Although this letter is no doubt considerably longer than you intended, the matter at hand 
is in many respects a complex one, and its importance obviously merits careful 
consideration. This document has been prepared at the unclassified level for your 
convenience; however, I would be pleased to provide further substantiation and 
clarification of various issues at a higher level of security, should you wish. 

1 would note at the outset that I am highly indebted to the people working in the 
Department of Energy, who were generous with their time and expertise and were 
extremely forthcoming, even welcoming, in sharing their views on what are often 
controversial issues. A particular debt of gratitude is owed to the staff of CSIS that 
supported us; they are a group of professionals. 
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APPROACH 

In conducting this review, 1 have read on the order of 1,000 pages of documents, some at 
classified levels, and held discussions with literally dozens of individuals, both 
management and non-management— the latter in some cases without management 
present I visited Y-12, Pantex Plant, Sandia National Laboratories, Savannah River Site, 
DoE headquarters, and the Calvert Cliffs nuclear power generation plant (The reason for 
conducting the field visits was to benefit first-hand from examining the different 
management models they embrace; to search for systemic problems; and to assure the 
degree of thoroughness that the task you assigned deserves.) 

The mindset you will hopefully find reflected in this letter is one commensurate with DoE's 
extraordinary responsibility of, among other things, providing for the security of sensitive 
nuclear materials and weapons. Failures in this arena can, as you know so well, directly 
impact the lives of millions of people as well as reshape the world’s geopolitical landscape 
virtually overnight. Under such circumstances, there can be zero margin for error, and that 
is the attitude that has been adopted in conducting this review. 


OVERALL FINDINGS 

"Unacceptable and inexcusable" were the words aptly used by the Administrator of the 
National Nuclear Security Administration (NNSA) testifying before the Congress with 
regard to the events of July 28 at Oak Ridge; as you know, three individuals, one an 82- 
year-old nun, penetrated four fences and several clear-zo'nes during the night, and when 
finally confronted, these individuals faced a trained security officer who acted principally 
as a spectator. Disconcertingly, I can see little reason why, under the specific prevailing 
circumstances, the Intruding group could not have included, in addition to the three 
persons actually participating in the incursion, a well-armed follow-up group. I must 
disclose that I have been involved in dozens of failure analyses of a variety of types during 
my career, and none has been more difficult for me to comprehend than this one. 

Many security professionals with whom we spoke reacted to the Y-12 incident with extreme 
embarrassment and, as in my own case, perplexity. The overwhelming majority of these 
individuals are very proud of the work they perform and are generally aware of the 
importance of their mission. ..which makes the cascade of failures that led to the events of 
July 28 all the more enigmatic. 

You asked that I address the pros and cons of various management structures that would 
better serve the Department in providing physical security, and I have done so. While this is 
important indeed, I conclude that, rather convincingly, the management structure was an 
abetting, not a root cause, of the problems encountered on July 28. The fundamental 
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problem was one of culture: a pervasive culture of tolerating the intolerable and accepting 
the unacceptable. 

As examples of this culture, a false alarm rate surpassing by orders of magnitude anything 
that 1 have ever encountered before was accepted as a fact of life. When full-time 
surveillance cameras failed, a "compensatory measure” was introduced that consisted of 
(relatively infrequent] periodic patrols. Word of no-notice tests was leaked to those 
security forces being tested. Failed security systems went unrepaired for months (yet were 
repaired within days after the Y-12 incursion when attention was focused upon the issue). 
There was cheating on proficiency exams. "Tune-up" firing was permitted prior to 
marksmanship qualification tests. Worthiness tests of hardware were delayed until the 
hardware was in working condition on the grounds that there is no sense testing hardware 
that isn’t working. Strikes of the guard force were largely dismissed as being readily offset 
by substitute guards (even though we were told that as many as three sites have entered 
union negotiations at about the same time, which could limit the availability of such 
substitutes). 

The demands of securing nuclear materials, components, and devices are perhaps of 
unmatched unforgiveness — yet in general it is an endeavor of chilling monotony. 

Individual security personnel can (hopefully) expect that they will never confront a true 
threat during their entire career. Add to this the hundreds of false and nuisance alarms 
that occurred (and occur) each month — and then working 12-hour shifts (albeit some 
involving rotation) — and one has a mind-numbing challenge even for the most dedicated 
professional. (Regarding the length of shifts, as explained in one DoE report, the workforce 
likes the overtime pay and days off.) 

The various corrective action plans and numerous security reviews (going back to 1986) 
reveal a pattern of inverted priorities, to wit, from highest to lowest: 

1. Accommodate the workforce. 

2. Reduce costs. 

3. Secure nuclear materials, components and devices. 

In summary, the problem the Department faces within the context of this review is a 
culture of permissiveness, amplified by the absence of day-to-day accountability and 
exacerbated, in the case of Y-12, by an ineffectual governance structure. 

As will be discussed later, 1 favor the Federalized Force model for a number of reasons. 
However, if this cannot, for various reasons, be implemented, I believe that the single- 
contract ("new" Y-12) model can be made to work...as could another alternative 1 will offer. 
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Unfortunately, one of the most difficult things to change is a failed culture. My observations 
over the years have, however, convinced me that change can be introduced and that there 
are at least seven ingredients to successfully do so: 

1. Make sweeping changes... begin with a “clean sheet of paper” — simply "trying 
harder" to do what you have been trying to do all along is a formula for failure. 

2. Make leadership changes wherever doubts exist as to its effectiveness. 

3. Devote a great deal of effort to communicating the new culture, 

4. Be intolerant of even the slightest reversions to the old culture. 

5. Lead by example — demand that all in leadership positions “walk the talk." 

6. Execute change fast...prolonging change so that everyone can get used to the new 
system is self-defeating. 

7. Weed out individuals who cannot accept the new culture (Vince Lombardi: "If you 
are not fired with enthusiasm you will be fired with enthusiasm!") 

CAUSAL FACTORS (Y-12) 

The following six factors seemed to predominate as triggers for the Y-12 incident of July 28 
(note; one earlier assessment identified 26 specific factors that contributed to the security 
failures): 

Failure of Early Warning System. Numerous reviews of Y-12 physical security have been 
conducted over the years: however, none— including one by NNSA not long before the July 
28 incident— expressed extraordinary concerns, although several cited troublesome 
indicators. In the case of the line-management system, the headquarters relied upon the 
site management; the site management relied upon the two primary contractors; and one 
of the two primary contractors was facing a competition and the union was concerned with 
an upcoming contract negotiation. In short, bad news did not flow upward, having been 
underappreciated or filtered at every level. The speed of light exceeds the speed of dark! 

Lack of Systems Approach. Razor (or concertina) wire was in place around part of the Y- 
12 perimeter. ..but not all. There was no evidence of a disciplined analysis of single-point 
or even multi-point failure modes. DoE sites, for example, have far fewer cameras than does 
the Calvert Cliffs power plant. It was reported that sixty compensatory measures were in 
place at Y-12 to “offset” malfunctions, but from a systems standpoint many of them were 
not truly compensatory. When the necessary funding to implement the ARGUS security 
system was not forthcoming (by nearly a factor of four), ARGUS was mated to elements of 
the existing system without adequate systems testing— and then rushed into 
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operation — apparently without objection by the Site Office. The result was that the 
"system upgrade” actually deteriorated system performance. 

Split Responsibilities. Wackenhut Services, Inc. (WSI) was responsible for the security 
force but the management and operations (M&O) contractor was responsible for the 
sensing, analysis, and display equipment The Site Office appears to have withdrawn from 
its oversight responsibilities, having misinterpreted headquarters instructions as to its 
role. The role of a Site Office (or headquarters) with regard to contracted activities is not to 
manage those activities but rather to ensure that those activities are managed. At 
Savannah River Site, physical control of category 1 materials located at two proximate sites 
is currently overseen via two different chains of command emanating from DoE 
headquarters. 

Focus of Inspection /Testing on Compliance. In general, inspections and testing have 
focused on verifying that contract terms are satisfied or that the Design Basis Threat (DBT) 
has been countered. Immense volumes of documentation containing innumerable check- 
lists have been produced — little of which addresses what the Department of Defense would 
consider Operational Testing (as opposed to Developmental Testing). Stated differently, 
tests have too often addressed the question, "Does the hardware or practice meet the 
design criteria rather than is it operationally effective?" Standards are often procedural 
rather than performance-oriented, and stress testing has been lacking. What is needed is 
not more inspections but better inspections. 

Compartmentallzation of Responsibility. During the review team's visit to the Calvert 
Cliffs nuclear power plant it was emphasized that if, for example, a member of the security 
force noticed that a production machine sounded differently from what they normally 
heard they would view it as their responsibility to report this observation. Further, it was 
the clear responsibility of management to run the apparent anomaly to ground and to 
report their overall findings to the security officer initially reporting the issues. This is in 
stark contrast to what occurred at Y-12. 

The fact that certain sensors at ¥-12 had been designated as priority 2 for repair should not 
have been an excuse for a very large number of sensors remaining inoperable for months, 
particularly when the problem was not elevated within the management structure, 
particularly including the Site Office, for resolution. 

During visits to the previously listed sites, one heard complaints about persistent 
escapements (deficiencies) that were known and accepted because "That belongs to the 
M&O contractor," "It is part of the union agreement," "It is required by the contract," "The 
FAA wouldn’t like it,” “You can’t cut down trees," etc. It is critically important that all 
escapements be identified and reported, resolution responsibility assigned, root causes 
found, corrections introduced and tested, and open-items formally closed. (In this regard. 
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NASA and its contractors have evolved highly effective systems in support of the human 
spaceflight program that might be conceptually helpful to the DoE.) 

Lack of Independent Verification. Testing and auditing ultimately requires 
independence from those responsible for what is being examined. At some point these two 
functions obviously must come together in the chain of command; however, in general, the 
higher that coincidence takes place, the better. This is particularly true of operational 
[performance) testing that may involve off-nominal conditions. 

The key individuals involved in such independent oversight need to be rotated periodically, 
much as audit firms are required to rotate account managers or the NRC rotates its field 
personnel. Absent this, the site offices can become relatively passive and increasingly 
insular. Site managers must be granted significant authority (and accountability) over 
work performed by contractors — not to give detailed instructions regarding work 
execution but rather to assure that contractor responsibilities are being met. Similarly, 
headquarters personnel should not seek to involve themselves in the actual execution of 
routine work, but should use their full authority to ensure that significant work is in fact 
properly executed. In short, micromanagement on the one hand and passivity on the other 
are not the only options. 

MANAGEMENT PRINCIPLES 

The suggestions that follow are driven by twelve management principles that 1 have 
discerned over my career [some the hard way!). These are as follows: 

1. Recognize that management is all about people. Selfless, competent, committed, 
ethical leadership-by-example is the coin of the realm, 

2. Focus on the primacy of mission. 

3. Communicate expectations and listen to concerns. Establish a single chain of 
responsibility and provide commensurate authority and resources. 

4. Maintain clear— and minimal— interfaces (both technical and organizational). 

5. Assure accountability and enforce consequences. 

6. Disproportionately reward significant contributors and do not endure under- 
contributors. 

7. Analyze every escapement — no matter how trivial — to determine root cause, 
introduce appropriate corrections, and conduct confirmatory tests. (“There is no 
such thing as a random failure.") 

8. Provide independent checks and balances. 
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9. Maintain parallel channels for surfacing bad news (line management, auditors, 
ethics officers, suggestion boxes, etc.). 

10. Culture can be an asset but it can never be an excuse, 

1 1. Treat all persons with respect. 

12. Operate ethically at all times. 

Quality personnel can make up for an inadequate organizational structure, but a quality 
organizational structure can never make up for inadequate personnel. 

ALTERNATIVE MANAGEMENT STRUCTURES 

The m}Tiad possible governance and management structures can conveniently be grouped 
into five basic models or hybrids thereof. Each has its advantages and disadvantages and, 
interestingly, three of the five are currently in use by the DoE, thereby offering first-hand 
experiential prototypes. These models are (a) Dedicated Physical Security — Military; (b) 
Dedicated Physical Security — Civilian; (c) Separate Operations and Physical Security; (d) 
Separate Operations and Full-Service Security; and (e) Integrated Operations and Physical 
Security. 

(a) Dedicated Physical Security — Military (Department of Defense (DoD)) 

This model has the advantage of resolving protective force career issues, promoting 
strong discipline and providing a single, established chain of command. It suffers 
from coordination issues that may arise between two major government 
departments (DoE/DoD), rapid turnover of personnel, and a visibly expanded 
operational role of the uniformed military within the United States. Furthermore, 
assigning such a mission to DoD, even given its importance, would inevitably be 
viewed as a distraction from the Department’s primary mission — a mission that is 
already extremely strained due to growing resource limitations. 

(b) Dedicated Physical Security — Civilian (DoE Office of Secure Transportation - OST) The 
option of a federalized physical security force would virtually eliminate concerns 
over work stoppages, increase continuity, and offer a clear and highly focused chain 
of command. It also recognizes the paramilitary— as opposed to civilian— nature of 
defending nuclear assets. However, it poses career management challenges for the 
members of the force as they age, and it has been asserted that it could be more 
costly than some other options. This approach represents a transformational change 
that should promote creating a new culture; however, it would be veiy difficult to 
"unwind" if it should later be desired to do so. (Under this model it is important that 
the Dedicated Physical Security Force have an integral capability to install and 
maintain all security systems as well as to access 
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organizations capable of developing such systems so that interface issues similar to 
those encountered at Y-12 are to be precluded.) 

(c) Separate Operations and Physical Security (“old" Y-12)) 

This model can produce significant potential interface challenges [between the M&O 
contractor and the security contractor) because of split responsibilities and 
reporting chains. It is also subject to work stoppages. On the other hand, it offers 
the advantage of a direct relationship between the Site Office and the critically 
important physical security contractor and greatly eases the problem of removing 
non-performing individuals and organizations. 

(d) Separate Operations and Full-Service Physical Security [new model) 

The primary failing of the Separate Operations and Physical Security model that was 
previously in place at Y-12 is its split of responsibility between two contractors for 
the performance of the physical security function. A workable excursion from this 
model that would maintain the needed emphasis on physical security professionals 
who are directly aligned with the Site Office would be to have separate M&O and 
physical security contractors but with the latter having a "full-service" responsibility. 
That is, the security contractor would be responsible not only for providing the Pro- 
Force but also for acquiring, installing and maintaining all security systems and other 
necessary equipment — directly overseen by the Site Office. In other words, rather 
than moving the Pro-Force to the M&O contractor, move that part of the M&O 
contract related to physical security to the security contractor. This would likely 
exacerbate relationships between operating employees and security employees but 
would provide a strong physical security capability and would remove physical 
security responsibilities from the M&O contractor that is more likely to be familiar 
with science or operations than physical security. 

(e) Integrated Operations and Physical Security ("new" Y-12, Pantex) 

At the M&O level, this model unifies responsibilities for security and operations and 
provides the site office with a single point of contact It also permits rapid 
resolution of personnel and major contractor issues. It suffers from the possibility 
of work stoppages and demands that the M&O organization and its senior members 
assume a breadth of responsibility that spans from plant operations to maintenance 
to cyber security to physical security and much more. Most potential M&O 
contractors will not be versed in the demands of providing physical security. The 
formation of joint ventures alleviates this problem but does not eliminate it. In the 
case of sites focused on research and development it confronts the challenge of 
integrating the open culture of science with the closed culture of security. 

Particularly in time of crisis the M&O contractor, security contractor and Site Office 
will need to maintain dose coordination; however, this is not unique to this 
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particular model since in all cases under such circumstances operational command 
shifts to the Pro-Force, with other organizations assuming a supporting role. 

SUGGESTIONS 

Given that no single model seems to offer a perfect solution, I would rank the five principal 
options, from best to worst, as follows, with the fourth of these being undesirable and the 
fifth being unacceptable (note that the second and third of these options would be 
considerably more attractive were it possible to obtain a federal ruling/law that precluded 
strikes by employees of commercial firms charged with securing Category 1 sites} ; 

• Dedicated Physical Security — Civilian ("Federalized") 

• Separate Operations and Full-Service Physical Security ("New Model”) 

• Integrated Operations and Physical Security ("Proprietary" — “New" Y-12) 

• Separate Operations and Physical Security ("Old" Y-12) 

• Dedicated Physical Security — Military (DoD) 

The above ranking is, curiously, somewhat contrary to my confessed personal prejudices — 
that is, believing that the Free Enterprise System does work and that government should 
perform only those functions that the private sector cannot, or will not, perform (there are 
of course a number of such functions). However, in the case at hand, an overriding 
consideration is that the DoE is concerned with one of the most consequential missions in 
the world; furthermore, it is a paramilitary mission potentially entailing the use of deadly 
force. Such a mission is best executed with a singular focus and with the greatest possible 
authority. 

The notion that individuals under some other models, many of whom have served our 
country in combat, would abandon their posts in a work stoppage while protecting a 
Categoiy-1 site is, frankly, incomprehensible to me. Whatever the case, the federalized 
model largely negates that happenstance. I discount the rather widely-held view that such 
eventualities are readily handled through backup plans, and do so in part because of the 
possibility that (as has recently occurred) multiple union contracts could expire at about 
the same time. (Note that work stoppages become a possibility even when union contracts 
contain no-strike provisions if that contract is no longer operative due to its expiration.) 

It is again emphasized that the Dedicated Physical Security— Civilian model must be a 
"total package” solution and include an integral capability to obtain and maintain all 
necessary physical security devices and equipment 

There are at least two major disadvantages to this overall approach. First, it poses non- 
trivial challenges in workforce career management Second, any attempt to implement it is 
likely to confront enormous opposition. With regard to the former, it is noted that there 
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are many government jobs (as well as M&O contractor jobs) that security force members 
can fill when they are no longer capable of meeting the high physical standards demanded 
when assuring nuclear security. Further, during the review, few if any instances were 
found where such problems have been significant (under any of the models in use). With 
regard to the latter concern, it is simply noted that the issue at hand has to do with the 
security of nuclear materials and weapons. Enough said! 

If, however, for any reason it is not practicable to implement the Dedicated Physical 
Security — Civilian model, the Separate Operations and Full-Service Physical Security model 
or the Integrated Operations and Physical Security model, the latter as used at Pantex and 
has been introduced at Y-12 following the July 28 event, should be workable. The 
Integrated Operations and Physical Security model could involve either a single contractor 
or a joint venture. Both options offer the distinct advantage of making necessary corrective 
actions regarding personnel far more expedient than the preferred approach cited above. 
(In my experience, I have found the government personnel system to be far more tolerant 
of [the relatively rare cases of] clearly substandard individual performance than the civilian 
sector.) 

The DoE is currently in the rather awkward situation of having (appropriately) abandoned 
as unworkable the Separate Operations and Physical Security model at Y-12, yet continuing 
to preserve that same model at the Savannah River Site (SRS) — with exactly the same 
security contractor! In discussions with the leadership of SRS it was clear that they are 
uniformly confident of the suitability and effectiveness of the existing situation. Based 
upon a one-day visit I would be hesitant to question that judgment since, as repeatedly 
observed herein, given capable people almost any model can be made to work. However, 1 
would strongly emphasize that some models are markedly more vulnerable to problems 
than others. It is my view that the Separate Operating and Physical Security structure is 
such a model. 

Other related actions that I would commend for your consideration are; 

• Establish a separate, dedicated organization responsible for conducting physical 
security (only) inspections and audits that reports directly to the Secretary of 
Energy (or, alternatively, the Nuclear Regulatory Commission). Field Sites 
would be responsible for periodically reporting status of all security elements to 
this organization. 

• Reinforce the authority of Field Sites and Field Offices — nonetheless making 
clear that during actual physical security incidents the chain of command is 
entirely within the physical security management structure and that Site office 
responsibility is not to manage work but to assure that work is managed. If the 
Site Offices are present merely to observe, then it is not apparent why they are 
present. 
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• Rotate select individuals between Headquarters and field sites in order to 
enhance understanding of the distinct roles, challenges and responsibilities 
faced by these two institutions (as is commonplace in industry) and thereby 
increase overall effectiveness. This will require revisions to the existing DoE 
policies for reimbursing the cost of employee moves. 

• Place security forces on eight-hour shifts. This would have the secondary benefit 
of producing a larger Pro-Force pool. (This is undoubtedly a strike issue.) 

• Create a single office (at Sandia or Livermore) to develop standards and 
procurement guidance along with advanced equipment for security systems 
(biometrics, high resolution displays, animal-discriminating sensors, etc.). These 
standardized systems can then be tailored, by exception, to the particular local 
conditions of individual sites. (It is noteworthy that not all such solutions need 
to be high-tech. For example. Savannah River Site has implemented what 
appears to be a very effective rip-rap barrier, yet it is not in evidence elsewhere 
(excluding the Calvert Cliffs nuclear power plant where it is fully embraced). 

The use of dogs is another such example. 

• Review the current threat model (which is said to be five years old). Involve 
outside organizations from both the intelligence community and the special ops 
community to participate in this effort. 

• Re-balance responsibilities among NNSA and other DoE headquarters entities to 
assure that field elements operating under similar circumstances are provided 
with a single, consistent chain of command and set of procedures. The creation 
of the reporting relationship of the Field Sites to NA-00 seems appropriate for 
clarity of command but will require careful implementation to avoid the 
evolution of "stovepipes." 

• Reevaluate current training practices with the assistance of outside 
organizations (military special operations forces (SOF)). Possibilities range from 
such simple actions as increasing the number of allotted training rounds to 
enhancing force-on-force testing methodology. (1 am aware that many of the 
DoE security personnel have had earlier experience with the above 
organizations!) 

• Change the culture! This can be facilitated by adopting the previously mentioned 
practices. It is emphasized that a primary benefit of the “Federalized Force" 
model is that it does provide a fresh start — a "clean sheet of paper." 

CONCLUDING OBSERVATIONS 

The President's Foreign Intelligence Advisory Board (PFIAB) included the following 
comment in its 1999 report regarding DoE: "A department saturated vrith cynicism, an 
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arrogant disregard for authority, and a staggering pattern of denial." While 1 observed 
nothing approaching the former two criticisms, the third does have resonance, at least with 
operations at Y-12. The pervasiveness of this sense of denial throughout DoE’s physical 
security system was not determinable in the time available for this review. Nonetheless, 
there is ample reason to thoroughly reassess the activities at other sites in search of 
patterns of behavior that may also require corrective action. 

No matter what management model is adopted, the same individuals are likely to populate 
it — with the exception of a few senior managers. Fortunately, the people we met during 
our assessment appeared to be individually highly capable and clearly dedicated, but often 
overwhelmed by a culture of accommodation and passiveness when in the presence of sub- 
par performance. Somehow, at least at Y-12, a culture of tolerance overcame a culture of 
performance. And while one could never, ever condone the actions of the trespassers on 
July 28, they inadvertently provided a much needed wakeup-call to those responsible for 
physical security at the nation's nuclear facilities. And while the Y-12 trespassers could 
not, in retrospect, pose a meaningful threat even given the extent of access they achieved, 
the magnitude of the failure of the security system was extraordinary. Strikingly, there 
have been incidents in earlier years at Savannah River and Rocky Flats that point to much 
the same cultural shortcomings as have been allowed to persist at Y-12. Change is 
needed. ..and needed quickly. 

I would note that a great deal of additional information resides at CSIS, and 1 believe it 
would be a sound investment for it to be compiled and provided to the DoE. 

Finally, 1 am honored that you requested that I participate in such an important 
undertaking and pleased that you encouraged me to be forthright in my assessment. I hope 
that my comments will be viewed as constructively offered and that they might assist you 
and the members of your team in addressing the challenges the nation confronts in 
securing nuclear assets. 




Norman R. Augustine 
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Secretly Steven Chu 
U.S. Department of Energy 
! 000 Independence Ave S W 
Washington, DC 20585 

Dear Steve: 

1 am writing in response to your request for advice on the management 
of physical security at the facilities with Category I material under DOE control. 
You have explained that this request arose as a result of the event at the Y- 12 
Highly Enriched Uranium Materials Facility in July in which three people, 
including an elderly nun, were able to penetrate the security fences and to 
deface the exterior of the building before being apprehended. In addition to this 
troubling breach, the first responder’s casual behavior upon encountering the 
intruders was completely inappropriate given the nature of the site. 

The security challenge confronting the Department is a complicated one 
for a variety of reasons. The DOE approach to security has evolved since 9/i 1 
from something that is akin to industrial security to a system involving an elite 
paramilitary force that can defend against a sophisticated terrorist attack. This 
has been a challenge both because of the need to enhance the capabilities of the 
protective forces and because the change has entailed significant expense to 
strengthen security structures and systems at facilities that were not Initially 
designed with this type of security in mind. These changes had to be 
undertaken within budgetary limitations at a time when the Department needed 
to pursue many other important (and expensive) programs. The changing 
demands on the weapons complex over the years have added yet another layer 
of complexity. And any change in security had to be accomplished within a 
legal and administrative structure for the Department that is extraordinarily 
complicated. 

The Department has not lacked for an abundance of thoughtful studies 
on the security issue over the years. Considerable change has been introduced 
as a result, but the Y-12 episode reveals that problems remain. Although my 
examination of the security issues confronting the Department has necessarily 
been limited, I am satisfied that the Y-12 episode has been taken very seriously 
and considerable effort has been made to ensure that security is strong 
throughout the complex. I have thus focused on your request to consider 
whether there are issues relating to the management structure for physical 
security. I know that you seek confidence that the security obligation will be 
fulfilled in an effective way for the long term. 
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You specifically asked whether the wholesale modification of the 
management structure for physical security is appropriate. As you know, the 
current system relies on contractors to provide security. (The details of this 
approach are discussed further below.) The obvious alternative would be to 
federalize the protective force (partially or completely) so that the security 
officers become DOE employees. Federalization could shorten chains of 
command between federal policymakers and the implementers of security, 
would encourage consistent application of policies and procedures across sites, 
would reflect the reality that security is a central federal function at these sites, 
and perhaps most importantly, would eliminate the potential for strikes by the 
protective force. Moreover, I understand that the unions at one time advocated 
such a change in order to deal with retirement and long-term disability concerns 
of the security officers. 

An evaluation by DOE in 2009 concluded that the merits of 
federalization turned on three factors: implementation of elite force concepts in 
a cost-effective manner, determination of practical avenues to address 
retirement and disability concerns, and identification of methods to address 
potential protective force work stoppages. Memorandum to the Acting Deputy 
Secretary fi-om T.P. D’Agostino and G.S. Podonsky (Jan. 13, 2009). The 
review found that the cost issue was the most important factor that should guide 
a decision and concluded that federalization would result in increased costs 
without commensurate benefits, particularly given the progress that had been 
made in implementing the elite force approach using contractors. The review 
also concluded that federalization did not offer a viable approach to address the 
union concerns because of the difficulties and complexities of a transition of 
guards from private-sector employment to federal employment. And, although 
it acknowledged that the most compelling reason to pursue federalization was to 
prevent work stoppages by unionized protective force members, it concluded 
that this risk could be managed by the execution of contingency protective force 
operations in such a situation, an approach that DOE has had to take in 
connection with a strike at Pantex. Although to my mind the issue is a close 
one, I have no informed basis to challenge this recent evaluation. 

One additional factor in favor of federalization is that a dramatic change 
of this nature could facilitate the introduction of a new security culture. In a 
sense, such a step would serve to wipe the slate clean and demonstrate that very 
different performance is expected going forward. The Office of Secure 
Transport uses federal employees and has satisfactorily fulfilled its functions, 
which serves to show that federalization can work. But no doubt a wholesale 
change in management structure would be very expensive to accomplish. And, 
if the protective force were federal employees, the imposition of discipline 
would be more difficult and in the end federalization could reduce flexibility. 

A variant is limited federalization. For example, one might federalize 
the armed component of the protective forces, while relying on a contractor for 
the remaining services. This presumably would reduce the cost of the transition 
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and would recognize the unique federal role of those who are authorized to use 
deadly force. Since federal employees cannot strike, this approach would 
facilitate the ability to respond to a work stoppage. But this approach would 
then complicate the chains of command within the protective forces. And it 
would make even more difficult the challenge of providing a career path for 
those in the armed component of the protective forces. (This issue is discussed 
below.) 


I conclude that a decision to federalize all or a part of the protective 
force would be difficult, would be expensive to accomplish, and would create 
some new challenges. In the absence of compelling benefits, it is probably not 
warranted. But it is an approach that may be worthy of consideration if efforts 
to make the necessary changes cannot be accomplished by a less drastic 
approach. 

A variant to the federalization of the protective force as DOE employees 
is to engage another federal agency, such as the Department of Defense or the 
Department of Homeland Security, to provide security. Engagement of another 
agency to provide security would serve to complicate chains of command and 
would likely create confusion as to who was in charge at the sites. The 
interfaces between the DOE and the management and operations (“M&O”) 
contractors would become even more complicated and confusing. Even if DOE 
were to engage another agency to provide security, the Department would still 
be accountable for the security posture. And, although I have not pursued the 
point, I am doubtful that another agency would be willing take on the task. I 
conclude that such an approach is not suitable. 

I thus conclude that it is reasonable to continue to rely on private 
contractors to provide security. I hasten to add, however, that there are 
opportunities to improve the management of security. Some of my suggestions 
follow: 

1 . Align authority and responsibility . At Y- 1 2, there was a division of 
responsibility for physical protection between the contractor responsible 
for the protective officers and the M&O contractor responsible for the 
fences, various sensors and other equipment that are part of the physical 
protection system. The result was a fractured management structure. 

The interface between the contractors was clearly not functioning: their 
priorities were not aligned. Cameras in the affected area were out of 
service and had been for a considerable time and the system of detectors, 
which had recently been significantly upgraded, was plagued by 
frequent false alarms. This resulted in a situation in July in which the 
protective force did not appreciate that the alarms associated with the 
breach of the fences were “real” and the absence of functioning cameras 
did not enable the appropriate immediate surveillance of the situation. 
Although no doubt a system involving multiple contractors could be 
made to work, a simplified structure in which one contractor is 
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responsible for all elements of security would provide greater assurance 
that the security approach is integrated and that issues that otherwise 
would cross lines between contractors are addressed. 

Although a compelling case can be made for assuring that all security 
functions are the responsibility of a single contractor, there is a 
subsidiary question whether security should be the subject of a separate 
contract from that with the M&O contractor. The advantage of 
separation is that the security responsibility could be allocated to an 
entity with strong skills in that one area, whereas the M&O contractor 
presumably must be selected based on a balancing of a variety of 
capabilities. But, again, separating the security function from the overall 
site responsibility will require a complicated interface between 
contractors, with opportunities for miscommunication and misalignment 
of priorities: security should be an integral part of site operations, not an 
add-on. Indeed, a single chain of command will be mandatory during a 
security event. As a result, the favored course, it seems to me, is to 
require the M&O contractor to fulfill the security function and to ensure, 
through proper controls, that it meets its responsibilities. 

2. Improve federal oversight . It was apparent that the department’s system 
of oversight did not detect and correct the security problems that the Y- 
12 incident revealed. The large number of false alarms was tolerated, 
raising questions about the acceptance testing, readiness, and 
maintenance of the ARGUS system. The cameras were not viewed as 
critical security equipment, with the result that a significant number 
were inappropriately allowed to remain out of service for an extended 
period. There were significant departures from expected procedures by 
the first responder, as well as significant communication deficiencies. 
The DOE oversight “system” was seemingly unaware of these problems 
and, in fact, the evaluations of the security at Y-12 had received 
consistently high marks in the period before the incident. The overall 
situation reveals significant failings in oversight by DOE. I appreciate 
that the approach to oversight does implicate broader issues within the 
Department as to the degree of freedom and flexibility that should be 
provided to its contractors. 

Part of the challenge in providing proper oversight may relate to the 
extraordinarily complicated administrative structure within DOE, with 
security responsibilities spread across several offices at headquarters and 
between headquarters and the DOE field offices. Indeed, we have had 
some difficulty in obtaining a clear organization chart that defines the 
structure for security oversight within DOE. I understand that issues 
associated with diffuse management are subject to study within the 
National Nuclear Security Administration (“NNSA”) in an effort that is 
being led by Brigadier General Sandra Finan. A broader examination of 
DOE’s internal management of security should be undertaken in order to 
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streamline and simplify the structure. The aim should be to establish 
clear authority and responsibility and to assure that the responsible staff 
has the right training and experience. Although I appreciate that 
different approaches to security may well be appropriate as a result of 
differing circumstances at the various DOE sites, I question whether 
different standards can be justified as a result of DOE’s organizational 
structure. Efforts to achieve consistency and uniformity would be 
appropriate. 

3. Enhancement of the Protective Force . Perhaps the most puzzling aspect 
of the Y- 12 incident is the behavior of the first responder. He had 
evidently received the appropriate training, but decided to ignore it. He 
seems to have immediately concluded that the three intruders were not a 
threat and, as a result, he treated them as such. Although his assessment 
proved to be correct, attackers might seek cover for a serious assault by 
mimicking the appearances that evidently were so reassuring to the first 
responder. The episode reveals the importance of training and drills to 
reinforce appropriate actions by the protective force. 

There are challenges associated with the maintenance of an appropriately 
trained protective force. DOE has enhanced the capabilities of its 
protective forces significantly with the aim of a establishing an elite 
paramilitary capability that can respond to a very capable and 
sophisticated adversary. The physical qualifications and capabilities of 
many members of the force must be maintained at a high level, which 
creates a challenge in establishing a career trajectory for the protective 
officers. Having a force that maintains its “edge” is difficult, given that 
actual attacks have not occurred. Indeed, overcoming boredom among 
the members of the protective force is difficult. The commercial nuclear 
industry has confronted many of these same challenges and has sought to 
establish and maintain an esprit among the protective force. It 
encourages attentiveness by frequent force-on-force drills, regular 
transitions among posts, and allowing other activities, 
such as access to the web while on post, in appropriate circumstances. It 
has sought to respond to the demanding physical challenges that may 
become more difficult as the security officers age by enabling and 
encouraging them to migrate to otherjobs at the site. In short, it has 
sought to establish and reinforce that the protective force is an important 
part of the team that operates the plant and that its members have career 
opportunities. Some of these lessons may be relevant to the DOE sites. 

4. Security Culture . The commercial nuclear industry has learned that the 
essential ingredient for assuring safe operations is the establishment of a 
culture in which safety is the highest priority. Management has the 
obligation to establish such a culture by its words and deeds, including 
the allocation of resources. Each plant worker has an individual 
responsibility to assure that any safety issue that a worker observes is 
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addressed even it is not within the worker’s responsibilities; if a 
supervisor fails to respond, the worker is obligated to raise the issue to a 
higher level and severe sanctions are imposed if any retaliation against 
such a worker occurs. Given the critical importance of security at the 
Category I sites, I believe that an analogous security culture needs to be 
established at the DOE sites. That is, everyone on the site should 
understand that security is his or her responsibility. Establishing such a 
culture will be difficult in a system in which individuals are otherwise 
encouraged to focus on individual responsibilities, but truly effective 
security requires such a change. 

5. Balance . The Y-12 episode has appropriately caused a heightened 

awareness of the importance of physical security. This focus should not 
be allowed to unduly distort DOE’s efforts. The aim should be to 
evaluate security using a systems approach that integrates physical, 
cyber, -and personnel security in order to reduce aggregate 
vulnerabilities. Balance should be maintained. 

St; ^ ^ 

In developing my thinking on the charge that you presented, I have had 
the benefit of interactions with Norm Augustine and Don Alston, as well as 
substantial assistance from the Center for Strategic and International Studies 
(“CSIS”). I was aided by extensive materials assembled by CSIS with DOE 
assistance concerning the various security reviews undertaken over the years, by 
site visits, by discussions with DOE and contractor staff, and by interviews with 
knowledgeable individuals. (Some of these interviews were undertaken by 
CSIS staff.) I very much appreciate this assistance. Nonetheless, this letter 
reflects my perspective. My comments should not be attributed to the various 
individuals who have helped to shape my judgments. 

I hope this letter is helpful. Please feel free to contact me if you have 
any questions. 

Best regards. 



Richard A. Meserve 
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Mr. Murphy. Thank you very much. 

Mr. Trimble, you have a chance for an opening statement. 

TESTIMONY OF DAVID C. TRIMBLE 

Mr. Trimble. Thank you, Chairman Murphy, Ranking Member 
DeGette, members of the subcommittee. My testimony today dis- 
cusses doe’s and NNSA’s management of the nuclear security en- 
terprise, and will focus on security, safety, and project and contract 
management. 

Multiple investigations into the security breach at Y-12 identi- 
fied significant deficiencies in NNSA’s security organization, over- 
sight, and culture. In response to the Y-12 security incident and 
the findings of these reports, DOE and NNSA have taken a number 
of actions, including repairing security equipment, reassigning key 
security personnel, and firing the Y-i2 protective force contractor. 
More recently, DOE and NNSA’s leadership committed to addi- 
tional actions, such as revamping the security oversight model. We 
have not evaluated these recent actions but will examine them as 
part of our ongoing review on security reform for this committee. 

The key question underlying this work will be whether DOE’s ac- 
tions to address the security breakdowns at Y-12 will produce sus- 
tained improvements in security across the nuclear security enter- 
prise. 

DOE has a long history of security breakdowns and an equally 
long history of instituting responses and remedies to fix these prob- 
lems. The recent testimony the leader of the NNSA security task 
force examining the Y-12 incident identified problems at NNSA’s 
federal security organization, including poorly defined roles and re- 
sponsibilities for its headquarters and field staff, inadequate over- 
sight and assessments of secured activities, problems ensuring that 
security improvements are implemented, and failing to ensure ade- 
quate staffing. Notably, in 2003, we reported on these same prob- 
lems, problems which have persisted or resurfaced, notwith- 
standing numerous DOE initiatives to fix or address them. 

In examining the security incident at Y-12, it is also important 
to remember that NNSA’s security problems have not been limited 
to Y-12. In March of 2009, we reported on numerous and wide- 
ranging security deficiencies at Livermore, particularly in the abil- 
ity of Livermore’s protective forces to ensure the protection of spe- 
cial nuclear material and the laboratory’s protection control of clas- 
sified material. We also identified Livermore’s physical security 
systems, such as alarms and sensors, and its security assurance ac- 
tivities as areas needing improvement. Weaknesses in Livermore’s 
contractor self-assessment program and the Livermore site office’s 
oversight of the contractor contributed to these security deficiencies 
at the laboratory. 

Los Alamos experienced a number of high profile security inci- 
dents in the ’90s that were subject to numerous congressional hear- 
ings, including some held by this committee. Subsequently, security 
evaluations through 2007 identified other persistent systemic secu- 
rity problems, including weaknesses in controlling protecting classi- 
fied resources, inadequate controls over special nuclear matter, in- 
adequate self-assessment activities, and weaknesses in the process 
Los Alamos uses to ensure that corrects identified security defi- 
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ciencies. In October of 2009, we found weaknesses at Los Alamos 
in protecting the confidentiality, integrity, and availability of infor- 
mation stored on and transmitted over its classified computer net- 
work. 

Regarding safety, in September of 2012, we testified before this 
subcommittee, noting that DOE’s recent safety reforms may have 
actually weakened independent oversight. Notably, since this re- 
cent testimony, reports by DOE and the safety board have contin- 
ued to identify safety concerns at Y-12, Pantex, and Los Alamos. 

Regarding project management, DOE has made progress in man- 
aging the costs and scheduled non-major projects, those costing less 
than $750 million, and in recognition of this progress, GAO has 
narrowed the focus of our high risk designation to major contracts 
and projects. Major projects, however, continue to pose a challenge 
for DOE and NNSA. In December of 2012, we reported that the es- 
timated cost to construct the waste treatment and immobilization 
plant in Hanford, Washington, had tripled to $12.3 billion since its 
inception in 2000, and the scheduled completion date had slipped 
nearly a decade to 2019. Moreover, we found that DOE had pre- 
maturely rewarded the contractor for resolving technical issues and 
completing work. We have reported on similar problems with the 
CMR facility at Los Alamos, the EPF project at Y-12, and the 
MOX project at Savannah River. 

In conclusion, over a decade after NNSA was created to address 
security issues, the Y-12 security incident has raised concern that 
NNSA has still not embraced security as an essential element of 
its mission. The numerous actions that DOE and NNSA are taking 
to address its security problems will require effective implementa- 
tion across the complex. Without this and strong and sustained 
leadership, these recent reforms, like past efforts, may not have a 
lasting impact on the security, performance, or culture of the agen- 
cy. 

Thank you. I would be pleased to answer any questions you may 
have. 

[The prepared statement of Mr. Trimble follows:] 
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What GAO Found 

The Department of Energy (DOE) and the National Nuclear Security 
AdministraticHi (NNSA), a separately organized agency within DOE, continue to 
face challenges in ensuring that oversight of security activities is effective. For 
example, in July 2012, after three trespassers gained access to the protected 
security area directly adjacent to one of the nation’s most critically important 
nuclear weapon-related facilities, the Y-12 National Security Complex, DOE and 
NNSA took a number of immediate actions. These actions included repairing 
security equipment, reassigning key security personnel, and firing the Y-12 
protective force contractor. As GAO and others have reported, DOE has a long 
history of seoirity breakdowns and an equally long history of instituting remedies 
to fix these problems. For example, 10 years ago, GAO reported on 
inconsistencies among NNSA sites on how they assess contractors’ security 
activities and. since that time, DOE has undertaken security initiatives to address 
these issues. GAO Is currently evaluating these security reform initiatives. 

DOE and NNSA continue to face challenges in ensuring that oversight of safety 
performance activities is effective. DOE and NNSA have experienced significant 
safety problems at their sites, and recent efforts to reform safety protocols and 
processes have not demonstrated sustained improvements. Long-standing DOE 
and NNSA management weaknesses have contributed to persistent safety 
problems at NNSA’s national laboratories. For example, in October 2007, GAO 
reported that neaily 60 serious accidents or near misses had occurred at NNSA’s 
national laboratories since 2000. DOE has undertaken a number of reforms to 
address persistent safety concerns. For example, in March 2010, the Deputy 
Secretary of Energy announced a reform effort to revise DOE’S safety and 
security directives. However, GAO reported in September 2012 that DOE’s 
safety reforms did not fully address continuing safety concerns that GAO and 
others identified in the areas of quality assurance, safety culture, and federal 
oversight and. in fact, may have actually weakened independent oversight. 

DOE and NNSA have made progress but need to make further improvements to 
their contract and project management efforts. DOE has made progress in 
managing nonmajor projects — those costing less than $750 million — and in 
recognition of this progress, GAO narrowed the focus of its high-risk designation 
of DOE’S Office of Environmental Management (EM) and NNSA to major 
contracts and projects. Specifically, as GAO noted in its December 2012 report 
on 71 DOE EM and NNSA nonmajor projects, GAO found ttie use of some sound 
management practices that were helping ensure successful project completion. 
However, major projects continue to pose a challenge for DOE and NNSA. For 
example, in December 2012, GAO reported that the estimated cost to construct 
the Waste Treatment and Immobilization Plant in Washington State had tripled to 
$12.3 billion since its inception in 2000, and the scheduled completion date had 
slipped by nearly a decade to 2019. Also, in March 2012, GAO reported that a 
now-deferred NNSA project to construct a new plutonium facility in Los Alamos, 
New Mexico, could cost as much as $5.8 billion, a neariy six-fold cost increase. 
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Chairman Murphy, Ranking Member DeGette, and Members of the 
Subcommittee: 

Thank you for the opportunity to discuss our work on the security, safety, 
and project management issues related to the nation’s nuclear security 
enterprise. As you know, the National Nuclear Security Administration 
(NNSA), a separately organized agency within the Department of Energy 
(DOE), is responsible for managing nuclear weapon- and 
nonproliferation-related missions in research and development 
laboratories, production plants, and other facilities — known collectively as 
the nuclear security enterprise.^ NNSA directs these national security 
missions, but work activities are largely carried out by management and 
operating (M&O) contractors at each site within the nuclear security 
enterprise. Working under M&O contracts, NNSA contractors apply their 
scientific, technical, and management expertise at NNSA's government- 
owned, contractor-operated sites.^ 

As we testified before ttiis Subcommittee in September 2012,^ questions 
have been raised about DOE’s and NNSA’s oversight of security, safety, 
and project and contract management for the nuclear security enterprise. 
For example, we first designated DOE’s management of its contracts as 
an area at high risk of fraud, waste, abuse, and mismanagement In 1990 
because of the department’s record of inadequate management and 
oversight of its contractors. During the late 1990s, DOE experienced 
security problems at the nation’s nuclear weapons laboratories and 


’Specifically, NNSA manages three national nuclear weapon design laboratories— 
Lawrence Livermore National Laboratory in California, Los Alamos National Laboratory in 
New Mexico, and Sandia National Laboratories in New Mexico and California. It also 
manages four nudear weapon production plants— the Pantex Plant in Texas, the Y-12 
National Security Complex in Tennessee, the Kansas City Plant in Missouri, and the 
Tritium Extraction Facility at DOE’s Savannah River Site in South Carolina. NNSA also 
manages the Nevada National Security Site, formerly known as the Nevada Test Site. 

^M&O contracts are agreements under which the federal government contracts for the 
operation, maintenance, or support, on its behalf, of a government-owned or -controfied 
research, development, spedal production, or testing establishment writoiiy or principaily 
devoted to one or more of the major programs of the contracting federal agency. Federal 
Acquisition Regulation, 40 C.F.R. § 17.601 (2012). 

^GAO, Modernizing the Nuclear Security Enterprise: Observations on the National Nuclear 
Security Administration's Oversight of Safety, Secunfy, and Project Management, 
GAO-12-912T (Washington, D.C.: Sept. 12. 2012). 
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significant cost overruns on major projects {i.e., $750 million or more). 
According to a June 1999 report by the President’s Foreign Intelligence 
Advisory Board, DOE’s management of the nuclear weapons 
laboratories, while representing “science at its best,” also embodied 
“security at its worst” because of “organizational disarray, managerial 
neglect, and a culture of arrogance.” The advisory board urged Congress 
to create a new organization that, whether established as an independent 
agency or a semiautonomous agency within DOE, would have a clear 
mission, streamlined bureaucracy, and drastically simplified lines of 
authority and accountability. Responding to the advisory board’s 
recommendations, Congress created NNSA under Title 32 of the National 
Defense Authorization Act for Fiscal Year 2000 — the NNSA Act.'^ The 
NNSA Act established NNSA as a “separately organized agency" within 
DOE. The act established the position of DOE Under Secretary for 
Nuclear Security, who was also designated as the Administrator of NNSA. 
The Secretary of Energy and the Deputy Secretary of Energy were 
allowed to establish policy for NNSA and to give direction to NNSA 
through the Administrator; however, other DOE employees were 
prohibited from directing the activities of individual NNSA employees. 

DOE directives remain the primary means to establish, communicate, and 
institutionalize polices, requirements, responsibilities, and procedures for 
multiple departmental elements, including NNSA, but the act gives the 
NNSA Administrator the authority to establish NNSA-specific policies, 
unless disapproved by the Secretary of Energy. NNSA does this through 
the issuance of Policy Letters.® 

NNSA’s creation, however, has not yet had the desired effect of fully 
resolving long-standing management problems. For example, NNSA and 
DOE’S Office of Environmental Management (EM) remain on our high-risk 
list.® Furthermore, we have frequently reported on security Incidents and 
safety issues that have contributed to the temporary shutdown of 
facilities, such as at Los Alamos and Lawrence Livermore National 


"•pub. L No. 106-65. 113 Stat. 512, 953 (1999). 

®NNSA, Policy Letters: NNSA Policies, Supplemental Directives, and Business Operating 
Procedures, NASD 251.1 (Washington, D.C.: July 5, 2011). 

®GAO, High-Risk Series: An l/pdafe, GAO-1 3-283 (Washington. D.C.; Feb. 201 3). We 
have shifted our foais concerning the high-risk area to major DOE-EM and NNSA major 
projecte (i.e., those $750 million <x more). 
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Laboratories In 2004 and 2005/ as well as the safety and security 
initiatives that contractors at these laboratories put in place to help ensure 
Improvement. More recently, at the Y-12 National Security Complex, in 
July 2012, three trespassers gained access to the protected security area 
directly adjacent to one of the nation’s most critically important nuclear 
weapon-related facilities without being interrupted by the security 
measures In place. According to DOE’s Inspector General, this security 
incident was unprecedented and represented multiple system failures 
including failures to maintain critical security equipment, respond properly 
to alarms, and understand security protocols.® Furthermore, the Inspector 
General found that contractor governance and federal oversight did not 
identify and correct early indications of these multiple system 
breakdowns. 

DOE’S management approach to security over the years has shifted in 
part due to concerns raised by some national laboratory, DOE, and NNSA 
officials. These officials believed that DOE’s and NNSA’s oversight of the 
laboratories’ activities had become excessive and that the safety and 
security requirements for the laboratories are overly prescriptive and 
burdensome, \Artiich had resulted in a negative effect on the quality of 
science performed at these laboratories. Partly in response to these 
concerns. DOE and NNSA embarked on reforms in 2010 and 2011 that 
sought to streamline requirements and institute what has been called by 
the National Research Council, the DOE Inspector General, the DOE 
Office of Health and Safety Performance, and the Defense Nuclear 
Facilities Safety Board (Safety Board) a “hands-off, eyes-on" role for 
federal oversight This approach placed more reliance on contractors’ 
self-oversight through its contractor assurance systems to ensure such 
things as effective safety and security performance,® Building on this 
theme, in February 2012, the National Research Council found that 


^For additional information on the 2004 temporary shutdown of facilities at Los Alamos, 
see GAO, Stand-Dovm of Los Alamos National Laboratory: Total Costs Uncertain: Almost 
All Mission-Critical Programs Were Affected but Have Recovemd. GAO-06-83 
(Washington, D.C.: Nov. 18. 2005). 

®DOE Office of Inspector General, Inquiry into the Security Bread} at the National Nuclear 
Security Administration’s Y-12 National Security Complex, DOE/IG-0868 (August 2012). 

®These systems indude management controls that help ensure the department’s program 
missions and activities are executed in an effective, efficient, and safe manner. We are 
currently evaluating the implementation of contractor assurance systems at NNSA sites 
and NNSA’s oversight of these systems. 
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“safety and security systems at the [NNSA] Laboratories have been 
strengthened to the point where they no longer need special attention.”^® 

In this context, there have been calls to enhance NNSA’s ability to 
operate independently of DOE. For example, the Defense Science Board 
proposed in 2006 that a completely independent nuclear weapons agency 
be created.'*^ In January 2007, we reported that former senior DOE and 
NNSA officials with whom we spoke generally did not favor removing 
NNSA from DOE.''^ Furthermore, in a June 2012 report, we concluded 
that such a drastic change was unnecessary to produce an effective 
organization,’® and we generally hold this view today. However, in the 
wake of the Y-12 security incident and persistent problems with major 
projects, there have been renewed calls to reexamine NNSA’s 
organization. Most recently, the Fiscal Year 2013 National Defense 
Authorization Act created the Congressional Advisory Panel on the 
Governance of the Nuclear Security Enterprise to examine options and 
make recommendations for revising the governance structure, mission, 
and management of the nuclear security enterprise. 

My testimony today discusses DOE’s and NNSA's management of the 
nuclear security enterprise. It focuses on our reports issued from August 
2000 to December 2012 on oversight of (1) security performance, (2) 
safety performance, and (3) project and contract management In the 
nuclear security enterprise. Detailed information about the scope and 
methodology can be found In our previously issued reports. We 
conducted the performance audit work that supports this statement in 
accordance with generally accepted government auditing standards. 
Those standards require that we plan and perform the audit to obtain 


’^National Research Cour»cji, Managing for High-Quality Science and Engineering at the 
NNSA National Security Laboratories, (Washington, D.C.: Feb. 15, 2012). 

’’The Defense Science Board provides the Department of Defense with independent 
advice and recommendations on matters relating to the department’s scientific and 
technical enteiprise. See Defense Science Board Task Force. Nuclear Capabilities 
(Washington. D.C.: Dec. 2006). 

’ ^GAO, National Nuclear Security Administration: Additional Actions Needed to Improve 
Management of the Nation's Nuclear Programs, GAO-07-36 (Washington, D.C.: Jan.19, 
2007). 

’®GAO, Modernizing the Nuclear Security Enteiprise: Observations on the Organization 
and Management of the National Nuclear Security Administration, GAO-12-867T 
(Washington, D.C.: June 27, 2012). 


Page 4 


GAO-1 3-«2T 



91 


sufficient, appropriate evidence to provide a reasonable basis for our 
findings and conclusions based on our audit objectives. We believe that 
the evidence obtained provides a reasonable basis for our findings and 
conclusions based on our audit objectives. 


Background 


DOE is responsible for a diverse set of missions, including nuclear 
security, energy research, and environmental cleanup. These missions 
are managed by organizations within DOE and largely carried out by 
M&O contractors at various DOE sites. According to federal budget data, 
NNSA is one of the largest organizations in DOE, overseeing nuclear 
weapons, nuclear nonproliferation, and naval reactors missions at its 
sites. With an $1 1 billion budget In fiscal year 2012— nearly 40 percent of 
DOE'S total budget— NNSA is responsible for providing the United States 
with safe, secure, and reliable nuclear weapons in the absence of 
underground nuclear testing and maintaining core competencies in 
nuclear weapons science, technology, and engineering. Ensuring a safe 
and reliable nuclear weapons stockpile is an extraordinarily complicated 
task and requires state-of-the-art experimental and computing facilities, 
as well as the skills of top scientists in the field. To Its credit, NNSA 
consistently accomplishes this task, as evidenced by the successful 
assessment of the safety, reliability, and performance of each weapon 
type in the nuclear stockpile since its creation. To support these 
capabilities into the future, in 201 1 . the administration announced plans to 
request $88 billion from Congress over the next decade to operate and 
modernize the nuclear security enterprise. 

As discussed earlier, work activities to support NNSA’s national security 
missions are largely carried out by M&O contractors. This arrangement 
has historical roots. Since the Manhattan Project produced the first atomic 
bomb during World War II, NNSA, DOE, and predecessor agencies have 
depended on the expertise of private firms, universities, and others to 
carry out research and development work and efficiently operate the 
facilities necessary for the nation's nuclear defense. Currently, DOE 
spends 90 percent of its annual budget on M&O contracts, making It the 
largest non-Department of Defense contracting agency in the 
government. 

DOE generally regulates the safety of its own nuclear facilities and 
operations at its sites. In contrast, the Nuclear Regulatory Commission 
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(NRC) generally regulates commercial nuclear facilities, and the 
Occupational Safety and Health Administration (OSHA) generally 
regulates worker safety at commercial industrial facilities.’''* However, 
because of the dangerous nature of work conducted at many sites within 
the nuclear security enterprise— handling nuclear material such as 
plutonium, manufacturing high explosives, and various industrial 
operations that use hazardous chemicals — oversight of the nuclear 
security enterprise is multifaceted. First, DOE policy states that its M&O 
contractors are expected to develop and implement an assurance 
system, or system of management controls, that helps ensure the 
department’s program missions and activities are executed in an 
effective, efficient, and safe manner.’'® Through these assurance systems, 
contractors are required to perform self-assessments as well as identify 
and correct negative performance trends. Second, NNSA site offices, 
which are collocated with NNSA sites, oversee the performance of M&O 
contractors. Site office oversight includes communicating performance 
expectations to the contractor, reviewing the conh'actor's assurance 
system, and conducting contractor performance evaluations. Third, 

DOE’S Office of Health, Safety, and Security — especially its Office of 
Independent Oversight— conducts periodic appraisals to determine If 
NNSA officials and contractors are complying with safety and security 
requirements.’'® Fourth, NNSA receives safety assessments and 
recommendations from other organizations, most prominently the Safety 
Board— an Independent executive branch agency created by Congress to 
assess safety conditions and operations at DOE’s defense nuclear 
facilities.*^ To address public health and safety issues, the Safety Board 
is authorized to make recommendations to the Secretary of Energy, who 


'foOE regulates the safety of most of its own sites with nuclear operations; NRC 
regulates several DOE nuclear facilities, and OSHA regulates occupational safety at DOE 
sites that have no nuclear function. 

*®DOE, Department of Energy Oversight Policy, DOE P 226.1B (Washington, D.C.; Apr. 
25, 201 1 ). Contractor assurance systems are to cover the following c^rational aspects; 
(1 ) environment, safety, and health; (2) safeguards and security: (3) emergency 
management; and (4) cyber security. 

*®DOE reorganized offices within its Office of Health. Safety, and Security. The Office of 
Independent Oversight merged with the Office of Enforcement and was renamed the 
Office of Enforcement and Oversight. For the purposes of this report, we refer to it as the 
Office of Independent Oversight. 

*’’The Safety Board provides oversight for all NNSA sites except the Kansas City Plant, 
which manufactures non-nuclear components. 
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may then accept or reject, in whole or in part, the recommendations. If the 
Secretary of Energy accepts the recommendations, the Secretary must 
prepare an implementation plan. 

DOE and some of its contractors have viewed this multifaceted oversight 
to be overly burdensome. To address this issue, in March 2010 the 
Deputy Secretary of Energy announced a reform effort to revise DOE's 
safety and security directives and modify the department’s oversight 
approach to “provide contractors with the flexibility to tailor and implement 
safety and security programs without excessive federal oversight or 
overly prescriptive departmental requirements." In the memorandum 
announcing this effort, the Deputy Secretary noted that burdensome 
safety requirements were affecting the productivity of work at DOE'S sites 
and that reducing this burden on contractors would lead to measurable 
productivity improvement. The Deputy Secretary noted that DOE's Office 
of Health, Safety and Security in 2009 had begun reforming its approach 
to enforcement and oversight. Similar to, but independent of DOE's safety 
and security reform effort, In February 201 1 , NNSA initiated Its 
"governance transformation" project, which Involved revising the agency's 
business model to, among other things, place more reliance on 
contractors' self-oversight through its contractor assurance system to 
ensure such things as effective safety and security performance, NNSA's 
non-nuclear Kansas City Plant completed implementation of this new 
business model, and other NNSA sites — such as the Nevada National 
Security Site and the Y-12 National Security Complex— were in the 
process of implementing it, too, when the Y-12 security incident occurred. 


DOE’S and NNSA’s 
Oversight of Security 
Performance 
Continues to Face 
Challenges 


In response to the Y-12 security breach, multiple investigations and 
reviews of the incident were performed by NNSA, the DOE Office of 
Inspector General, and the DOE Office of Independent Oversight. These 
reviews identified numerous problems with NNSA's and its contractors' 
performance, including: physical security systems, such as alarms; 
protective force (i.e., NNSA's heavily armed, contractor guard forces) 
training and response; failures to correct numerous known problems; and 
weaknesses in contract and resource management, in addition, at the 
request of the Secretary of Energy, an independent panel, composed of 
three former executives from Federal agencies and the private sector, 
and a NNSA Security Task Force found broader and systemic security 
issues across the nuclear security enterprise. The Secretary’s panel in 
December 2012 analyzed various models for providing security at DOE 
and NNSA sites but generally found that improvements to the security 
culture, management, and oversight were necessary, in addition to having 
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an effective organizational structure. In addition, the leader of the NNSA 
Security Task Force testified before the House Armed Services 
Committee in February 2013 about significant deficiencies in NNSA’s 
entire security organization, oversight, and culture. 

In response to the Y-12 security incident and these findings, DOE and 
NNSA took a number of immediate actions, including repairing security 
equipment, reassigning key security personnel, and firing the Y-12 
protective force contractor. In February 2013, the Acting NNSA 
Administrator committed to implementing a three-tiered oversight process 
involving contractor self-assessment, NNSA evaluation of site 
performance, and independent oversight by DOE'S Office of independent 
Oversight. The Acting Administrator testified before the House Armed 
Services Committee that she believed that such actions will help instill a 
culture that embraces security as an essential element of NNSA's 
missions. 

In assessing DOE’S actions to address the security breakdowns at Y-12, 
a central question will be whether these latest actions taken will produce 
sustained improvements in security at Y-12 and across the nuclear 
security enterprise. As we and others have reported, DOE has a long 
history of security breakdowns and an equally long history of instituting 
responses and remedies to "fix” these problems. For example, in 
examining the Y-12 security incident, NNSA’s former Acting Chief of 
Defense Nuclear Security and the leader of the NNSA’s Security Task 
Force testified in February 2013 about problems with NNSA's f^eral 
security organization including poorly defined roles and responsibilities for 
Its headquarters and field security organizations, Inadequate oversight 
and assessments of site security activities, and issues with overseeing 
contractor actions and implementing improvements. As noted In table 1 , 
10 years ago we reported on very similar problems, and since that time 
DOE has undertaken numerous security initiatives to address them. We 
have not evaluated these recent initiatives but we have ongoing work to 
evaluate them as part of our review on security reform for the 
Subcommittee, which we will complete later this year. 


Page 6 


GAO-1 3-482T 



95 


Table 1 ; Comparison of GAO 2003 Findings Regarding NNSA's Federal Security Organization with NNSA Security Task 

Force’s February 2013 Findings 


GAO May 2003 Findings 

NNSA Security Task Force February 2013 
Findings 

Defining clear roles and 
responsibilities 

NNSA has not fully defined clear roles and 
responsibilities for its headquarters and site 
operations. 

NNSA security line management authority is ill- 
defined. There are overlapping lines of authority 
and a mixing of staff and iine functions. 

Assessing sites' security 
activities 

There are inconsistencies among NNSA sites on 
how they assess contractors’ security activities. 
Consequently, NNSA cannot be assured that all 
facilities are subject to comprehensive annual 
assessments as required by DOE policy. 

NNSA does not have an adequate security 
performance assessment process or capability. 
NNSA has come to rely overwhelmingly on federal 
staff reviewing contractor-provided data, rather 
than effectively assessing performance itself. 

Overseeing contractors' 
actions and implementing 
long-term improvements 

NNSA contractors do not consfetently conduct 
required analyses in preparing security correctiw 
program action plans. Security performance at 
sites may not be maximized because corrective 
security program actions are developed without 
fully <x>nsidering root causes, risks posed, or costs 
and beneflts of taking corrective action. 

NNSA has attempted to correct some identified 
issues over the years, but it has not adequately 
emphasized security mission performance. Recent 
DOE and NNSA reforms have deemphasized 
performance verification by federal staff, resulting 
in a weakened federal security assessment 
program. 

Allocating staff 

NNSA has shortfalls at its site offices in number 
and expertise of staff. whi<ih could make it more 
dlffioilt for site offices to effectively oversee 
security activities. 

The NNSA federal security function is not properly 
organized or staffed. 


Sources; GAO. NuOev Security: NNSA Needs » aefler Utnags Its Ssf»guanls and Seeufity Program, GAO-03-471 (Washington, 
D.C.: May 30, 2003); and Hearing on Nuctaar Security. Actions. Accountability, and Reform, Before the Subcommittee on Strategie 
Fomas. House Armed Services Committee. 113th Cong. (Feb. 23. 2013) (Statement of Sngadler General Sandra 6. Flnan, 
Commander. Air Force Nuclear Weapons Center. Teettmony based wi Pret^ous Position aa Acting Chief of Defenee Nuelsar Security, 
NNSA), 

It is also important to note that NNSA’s long-standing security problems 
are not limited to Y-12. DOE’s and NNSA’s work with nuclear materials 
such as plutonium and highly enriched uranium, nuclear weapons and 
their components, and large amounts of classified data require extremely 
high security, however, as we and DOE have reported, NNSA and DOE 
have a long history of poor security performance across the nuclear 
security enterprise, most notably at Los Alamos and Livermore national 
laboratories, as well as ongoing struggles to sustain security 
improvements, including information security.''® 


We note that over the past decade, the DOE inspector General and Office of 
Independent Oversight periodically identified serious security issues at almost alt of 
NNSA’s sites, including Sarnlia National Laboratories; the Nevada National Security Site, 
Pantex, and prior to the July 2012 security incident, the Y-12 National Security Complex. 
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Los Alamos National As we noted inourSeptember2012 testimony,^® Los Alamos National 

Laboratory Laboratory {Los Alamos) experienced a number of high-profile security 

incidents In the previous decade that were subject to congressional 
hearings, including some held by this Subcommittee. Many of these 
incidents focused on Los Alamos's inability to account for and control Its 
classified resources. These incidents include the transfer or removal of 
classified information from authorized work areas or the laboratory Itself, 
the temporary loss of two hard drives containing nuclear weapon design 
information, and difficulties in accounting for classified removable 
electronic media. In addition to these well-publicized incidents, security 
evaluations through 2007 identified other persistent, systemic security 
problems at Los Alamos. These problems included weaknesses in 
controlling and protecting classified resources, inadequate controls over 
special nuclear material, inadequate self-assessment activities, and 
weaknesses In the process that Los Alamos uses to ensure it corrects 
identified security deficiencies, Partly as a result of these findings, as we 
reported in 2008,^ Los Alamos underwent a 10 month shut-down of 
operations in 2004 and experienced a change in contractors In 2005. 
Moreover, the Secretary of Energy issued a compliance order In 2007 
requiring Los Alamos to implement specific corrective actions to, among 
other things, address long-standing deficiencies In its classified 
information programs. We reported in January 2008 and testified before 
this Subcommittee in September 2008 that Los Alamos had experienced 
a period of Improved security performance but that it was too earty to 
determine whether NNSA and Los Alamos could sustain this level of 
improvement.^^ 


Lawrence Livermore in March 2009, we reported on numerous and wide-ranging security 

National Laboratory deficiencies at Lawrence Livermore National Laboratory (Livermore), 

particularly in the ability of Livermore's protective forces to ensure the 


■'®GAO-12-912T. 

^°GAO, Los Alamos National Laboratory: Long-Term Strategies Needed to Improve 
Security and Management Oversight, GAO-08-694 (Washington. D.C.; June 13. 2008). 

GAO, Los Alamos National Laboratory: Infonrmtion on Security of Classified Data, 
Nuclear Material Contmls, Nuclear and Worker Safety, and Project Management 
Weaknesses, GAO-08-173R (Washington D.C.: Jan. 10. 2008), and GAO, Nuclear 
Security: Los Alamos National Laboratory Faces Challenges in Sustaining Physical and 
Cyber Security Improvements, GAO-08-1180T (Washington, D.C.: Sep. 25. 2008). 
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protection of special nuclear material and the laboratory’s protection and 
control of classified matter.^ We also identified Livermore’s physical 
security systems, such as alarms and sensors, and Its security program 
planning and assurance activities, as areas needing improvement. 
Weaknesses in Livermore's contractor self-assessment program and the 
Livermore Site Office's oversight of the contractor contributed to these 
security deficiencies at the laboratory. According to one DOE Office of 
Independent Oversight official, both programs were “broken” and missed 
even the “low-hanging fruit." The laboratory took corrective action to 
address these deficiencies, but we noted that better oversight was 
needed to ensure that security improvements were fully implemented and 
sustained. In September 2012, NNSA and Livermore completed efforts to 
move the site’s most sensitive nuclear material to other sites, thereby 
easing the site’s security requirements. 


Information Security We also have reported extensively on NNSA’s challenges in maintaining 

effective and secure information security systems, particularly at Los 
Alamos. For example, in June 2008, we reported that significant 
information security problems at Los Alamos had received insufficient 
attention. The laboratory had over two dozen initiatives under way that 
were principally aimed at reducing, consolidating, and better protecting 
classified resources. However, the laboratory had not implemented 
complete security solutions to address either the problems of classified 
parts storage in unapproved storage containers or weaknesses in Its 
process for ensuring that actions taken to correct security deficiencies 
were completed. In addition, in October 2009 we reported that Los 
Alamos needed to better protect its classified network,^ Specifically, we 
found significant weaknesses remained in protecting the confidentiality, 
integrity, and availability of information stored on and transmitted over Its 
classified computer nehwork. Moreover, we found the laboratory’s 


^^GAO, Nuciear Security: Better Oversight Needed to Ensure That Security Improvements 
at Lawrence Livermore National Laboratory Are Fully Implemented and Sustained, 
GAO-09-321 (Washington. D.C.: Mar. 16, 2009). 

^^GAO, Los Alamos National Laboratory: Long-Term Strategies Needed to Improve 
Security and Management Oversight, GAO-08-694 (Washington, D.C.: June 13, 2008). 

^'’gaO, Infonnation Security: Actions Needed to Better Manage, Protect, and Sustain 
Improvements to Los Alamos National Laboratory’s Classified Computer NeN/ork. 
GAO-10-28 (Washington. D.C.: Oct. 14, 2009). 
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decentralized approach to information security program management has 
led to inconsistent implementation of policy. 


DOE and NNSA’s 
Oversight of Safety 
Performance 
Continues to Face 
Challenges 


DOE and NNSA have experienced significant safety problems at their 
sites, and recent efforts to reform safety protocols and processes have 
not demonstrated sustained Improvements. As we testified in September 
2012 before this Subcommittee,^ long-standing DOE and NNSA 
management weaknesses have contributed to persistent safety problems 
at NNSA’s national laboratories. For example, in October 2007, we 
reported that nearly 60 serious accidents or near misses had occurred at 
NNSA’s national laboratories since 2000.^® These accidents included 
worker exposure to radiation, inhalation of toxic vapors, and electrical 
shocks. Although no one was killed, many of these accidents caused 
serious harm to workers or damage to facilities. As we also reported, at 
Los Alamos in July 2004, an undergraduate student who was not wearing 
required eye protection was partially blinded in a laser accident. Our 
review of nearly 100 safety studies— including accident Investigations and 
independent assessments by the Safety Board and others issued since 
2000 — found that the contributing factors to these safety problems 
generally fell into fiiree key categories; (1) relatively lax laboratory 
attitudes toward safety procedures, (2) laboratory inadequacies in 
identifying and addressing safety problems with appropriate corrective 
actions, and (3) inadequate oversight by NNSA site offices.^^ DOE's 
Office of Inspector General has also raised concerns about safety 
oversight by NNSA’s site offices. Specifically, the Inspector General 
reported in June 2011 that NNSA’s Livermore Site Office was not 
sufficiently overseeing its contractor to ensure that corrective actions 
were fully and effectively implemented for a program designed to limit 
worker exposure to beryllium, a hazardous metal essential for nuclear 
operations.^® 


2®GA0-12-912T. 

^®GAO, Nuclear and Worker Safety: Actions Needed to Determine the Effectiveness of 
Safety Improvement Efforts at NNSA’s Weapons Laboratories, GAO-08-73 (Washington, 
D.C.:Oct. 31,2007). 

2^GAO-08-73. 

2®dOE Office of Inspector General, Implementation of Beryllium Controls at Lawrence 
Livermore National Laboratory, EX3E/IG-0851 (Washington, D.C.; June 17, 2011). 


Page 12 


GAO-13-482T 



99 


DOE has undertaken a number of reforms to address persistent safety 
concerns. In March 2010, the Deputy Secretary of Energy announced a 
reform effort to revise DOE’s safety and security directives. The reform 
effort was aimed at modifying the department’s oversight approach to 
“provide contractors with the flexibility to tailor and implement safety and 
security programs without excessive federal oversight or overly 
prescriptive departmental requirements." As we reported to this 
Subcommittee in April 2012, this reform effort reduced the number of 
safety related directives from 80 to 42 by eliminating or combining 
requirements the department determined were unclear, duplicative, or too 
prescriptive and by encouraging the use of industry standards. However, 
as we noted in September 2012 before this Subcommittee, DOE’s safety 
reforms did not ftilly address safety concerns that we, as well as others, 
have identified in the areas of quality assurance, safety culture, and 
federal oversight and, in fact, these reforms may have actually weakened 
independent oversight We stated, for example, that while DOE policy 
notes that independent oversight is integral to help ensure the 
effectiveness of safety performance, DOE's Office of Independent 
Oversight staff must now coordinate their assessment activities with 
NNSA site office management to maximize the use of resources. This 
arrangement raised our concern about whether Office of Independent 
Oversight staff would be sufficiently independent from site office 
management. In our April 2012 report, we recommended, among other 
things, that DOE develop a detailed reform plan and clearly define the 
oversight roles and responsibilities of DOE’s Office of Independent 
Oversight staff to ensure that their work is sufficiently independent from 
the activities of DOE site office and contractor staff. DOE has taken steps 
to respond to these recommendations, including developing a plan aimed 
at improving safety management and drafting a memo from the Secretary 
of Energy reconfirming the department’s commitment to independent 
oversight of safety and security. 

However, since our September 2012 testimony,®® concerns continue to be 
raised about safety performance and oversight at several NNSA sites, 
which indicate DOE’s safety reforms have not brought about a sustained 
change in safety practices. The following are examples: 


^®GAO, Nudear Safefy; DOE Needs to Determine the Costs and Benefits of Its Safety 
Reform Effort, GAO-12-347 (Washington, D.C.: Apr. 20, 2012). 

®®GAO-12-912T. 
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• A November 201 2 report by DOE's Office of Independent Oversight 
raised concerns about safety culture issues at NNSA’s Pantex Plant. 
Among the concerns were reluctance by workers to raise safety 
problems for fear of retaliation and a perception that cost took priority 
over safety. 

. At an October 2012 public hearing in Knoxville, Tennessee, the Safety 
Board noted that safety controls to prevent or mitigate consequences 
from accidents had not been fully incorporated into the design of a 
new uranium processing facility at Y-12. The Safety Board noted the 
facility’s safety basis — a technical analysis that identifies potential 
accidents and hazards associated with a facility's operations and 
outlines controls to mitigate or prevent their impact on workers and 
the public— did not adequately address controls to protect workers or 
the public in the case of an earthquake or small fires, and did not 
adequately calculate reasonably conservative radiation exposure 
consequences that could lead to putting greater safety into the 
facility’s design. The Safety Board further noted that these 
deficiencies raise the potential for significant impacts on public and 
worker safety. 

. A January 2013 Office of Independent Oversight report reviewing the 
Los Alamos Site Office assessment of the contractor corrective action 
system found that the contractor had not implemented effective 
corrective actions for Identified safety system problems. This report 
noted that the site office concluded that more than half of the 62 
safety system items needing corrective action had been closed 
without adequate action or sufficient documentation. Moreover, In 
October 2012, NNSA issued a Preliminary Notice of Violation to a Los 
Alamos contractor for repeated electrical safety problems. NNSA's 
notice stated that insufficient oversight of subcontractor work by the 
contractor safety staff was among the contributing factors. NNSA 
fined the contractor $262,500. 


DOE and NNSA Have 
Made Progress but 
Further 
Improvements 
Needed on Project 
and Contract 
Management 


A basic tenet of effective management is the ability to complete projects 
on time and within budget. DOE has taken a number of actions to 
improve management of projects, including those overseen by NNSA. For 
example, DOE has updated project and contract management policies 
and guidance In an effort to improve the reliability of project cost 
estimates, better assess project risks, and better ensure project reviews 
that are timely and useful and identify problems early. In addition, in 
December 2010, the Deputy Secretary of Energy convened a DOE 
Contract and Project Management Summit to discuss strategies for 
additional improvement In contract and project management. The 
participants identified barriers to improved performance and reported in 


Page 14 


GAO-13-482T 



101 


April 2012 on the status of initiatives to address these barriers. DOE has 
continued to release guides for implementing its revised order for 
Program and Project Management for the Acquisition of Capital Assets 
(DOE O 413,36), such as for cost estimating, using earned value 
management, and forming project teams. Further, DOE has taken steps 
to enhance project management and oversight by requiring peer reviews 
and independent cost estimates for projects with values of more than 
$100 million and by improving the accuracy and consistency of data in its 
central repository for project data. 

DOE has made progress in managing nonmajor projects— those costing 
less than $750 — million and in recognition of this progress, we narrowed 
the focus of our high-risk designation to major contracts and projects. 
Specifically, as we noted in our October 2012 report on DOE'S EM 
cleanup projects funded by the American Recovery and Reinvestment 
Act, at the time of our analysis, 78 of 1 12 projects had been completed.^’ 
Of those completed projects, 92 percent met the performance standard of 
completing project work scope without exceeding the cost target by more 
than 10 percent, according to EM data. However, we made four 
recommendations to DOE in this report aimed at improving how EM 
manages and documents projects, particularly with respect to establishing 
key performance parameters such as project scope targets and baselines 
for cost and schedule. DOE concurred with all of our recommendations, 
recognizing that improvements could be made and that lessons learned 
from these projects can be applied to EM's broader portfolio of projects 
and activities. In addition, in December 2012, we reported that EM and 
NNSA were making some progress in managing the 71 nonmajor 
construction and cleanup projects that we reviewed and are expected to 
cost an estimated $10.1 billion in total, For example, we identified some 
NNSA and EM nonmajor projects that used sound project management 
practices, such as the application of effective acquisition strategies, to 
help ensure the successful completion of these projects. We also 
recommended that NNSA and EM clearly define, document, and track the 
scope, cost, and completion date targets for each of their nonmajor 


^^GAO, Recovery Act: Most DOE Projects Are Corrrplete, but Project Marragemerrt 
GuirJance Could Be Strengthened, GAO-13-23 {Washington D.C.: Oct. 15, 2012). ■ 

^^GAO, Department of Energy: Better Information Needed to Determine if Nonmajor 
Projects Meet Performance Targets, GAO-13-129 (Washington, D.C.: Dec. 19, 2012). 
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projects and that EM clearly identify critical occupations and skills in its 
workforce plans. NNSA and EM agreed with these recommendations. 

Notwithstanding these positive developments for nonmajor projects, 
major projects (Le., tfiose $750 million or more) continue to pose a 
challenge for DOE and NNSA. Since 1990 when we placed contract and 
project management on the high-risk list, we have reported on problems 
that principally involve ineffective oversight and poor management of 
contractors. Our recent work, as well as reporting by DOE, indicates that 
these problems continue. Examples are as follows: 

• In December 2012, we reported that the estimated cost to construct 
the Waste Treatment and Immobilization Plant in Washington State 
had almost tripled to $12.3 billion since the project's inception in 2000, 
and the scheduled completion date had slipped by nearly a decade to 
2019.^ Moreover, we found that DOE's incentives and management 
controls were inadequate for ensuring effective project management 
and we also found instances where DOE prematurely rewarded the 
contractor for resolving technical issues and completing work, 

• In March 2012, we reported that NNSA’s project to construct a new 
plutonium facility, the Chemistry and Metallurgy Research 
Replacement Nuclear Facility, at Los Alamos could cost as much as 
$5.8 billion, a nearly six-fold increase from its original estimate.^^ 
While the facility may be large enough to support nuclear weapon 
stockpile requirements, our March 2012 report found that it Is unclear 
if the facility will be large enough to accommodate DOE’s non-weapon 
activities that involve plutonium — such as nonproliferation, nuclear 
forensics, and nuclear counterterrorism programs— because the 
department has not comprehensively studied its long-term research 
and storage needs. 

• In November 2010, we reported that NNSA’s plans to construct a 
modern Uranium Processing Facility at its Y-12 National Security 
Complex in Oak Ridge, Tennessee, had experienced significant cost 


^^GAO, Hanford Waste Treatment Plant: DOE Needs to Take Action to Resolve Technical 
and Management Challenges. GAO-13-38 (Washington, D.C.: Dec. 19, 2012). 

^GAO, Modernizing the Nudear Security Enterprise: New Plutonium Research Facility at 
Los Alamos May Not Meet All Mission Needs, GAO-1 2-337 (Washington, D.C.: Mar. 26, 
2012). 
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increases.^® More recently, in September 201 1 , NNSA estimated that 
the facility would cost from $4.2 billion to $6.5 billion to constaict — a 
neatly seven-fold cost increase from the original estimate. 

• In April 2010, we reported that weak management by DOE and NNSA 
had allowed the cost, schedule, and scope of ignition-related activities 
at the National Ignition Facility to increase substantially.^® We 
reported tfiat, since 2005, Ignition-related costs have increased by 
around 25 percent — ^from $1.6 billion in 2005 to over $2 billion in 

201 0 — and that the planned completion date for these activities had 
slipped from the end of fiscal year 201 1 to the end of fiscal year 2012 
or beyond. Ten years earlier, in August 2000, we had reported that 
poor management and oversight of the National Ignition Facility 
construction project at Lawrence Livermore National Laboratory had 
increased the facility's cost by $1 billion and delayed Its scheduled 
completion date by 6 years.^^ 

• In March 2010, we reported that NNSA's Mixed-Oxide Fuel 
Fabrication Facility currently being constructed at DOE’S Savannah 
River Site in South Carolina had experienced delays, but project 
officials said that they expected to recover from these delays by the 
end of 201 0 and planned for the start of operations on schedule in 
2016. In addition, after spending about $730 million on design, NNSA 
has cancelled the pit disassembly and conversion facility and is now 
planning to use existing facilities at DOE's Savannah River and Los 
Alamos sites and will add equipment to the mixed oxide facility. 

NNSA is working on a cost and schedule estimate for the use of these 
existing facilities and for adding the additional equipment. 

We have also issued several reports on the technical issues, cost 
increases, and schedule delays associated with NNSA's efforts to extend, 
through refurbishment, the operational lives of nuclear weapons in the 


^®GAO, Nuclear Weapons: National Nuclear Security Administration’s Plans for Its 
Uranium Processing Facility Should Better Reflect Funding Estimates and Technology 
Readiness, GAO-1 1-103 (Washington, D.C.: Nov. 19, 2010). 

^ignition-related activities consist of the efforts separate from the facility's construction 
that have been undertaken to prepare for the first attempt at ignition — the extremely 
intense pressures and temperatures that simulate on a small scale the thermonuclear 
conditions created in nuclear explosions. See GAO, Nuclear Weapons: Actions Needed to 
Address Scientific and Technical Challenges and Management Weaknesses at the 
National Ignition Fadlity, GAO-10-488 (Washington, D.C.; Apr. 8, 2010). 

®^GAO, National Ignition Facility: Management and Oversight Failures Caused Major Cost 
Overrurrs and Schedule De/ays, GAO/RCED-00-271 (Washington, D.C.: Aug. 8, 2000). 
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stockpile. For example, in March 2009, we reported that NNSA and the 
Department of Defense had not effectively managed cost, schedule, and 
technical risks for the B61 nuclear bomb and the W76 nuclear warhead 
refurbishments.^ For the B61 life extension program, NNSA was only 
able to stay on schedule by significantly reducing the number of weapons 
undergoing refurbishment and abandoning some refurbishment 
objectives. Earlier, in December 2000, we similarly had reported that 
refurbishment of the W87 strategic warhead had experienced significant 
design and production problems that Increased its refurbishment costs by 
over $300 million and caused schedule delays of about 2 years. 

In conclusion, the actions that DOE and NNSA have taken to address 
weaknesses in oversight of security, safety, and contract and project 
management are very important, but problems persist. While we have 
noted progress in the area of project management, we also observe that 
NNSA and DOE EM have not begun a new major project since taking 
these actions. The Y-12 security incident was an unprecedented event for 
the nuclear security enterprise and perhaps indicates that NNSA's 
organizational culture, over a decade after the agency was created to 
address security issues, still has not embraced security as an essential 
element of its missions. In terms of safety, DOE has recently taken the 
initiative to examine the safety culture at its sites. We believe, as do other 
organizations, including the DOE Inspector General and Safety Board, 
that a “hands off, eyes on” oversight approach for security, safety and 
contract and project management is insufficient and unwarranted until the 
department can demonstrate sustained improvement in all three areas. 
We will continue to monitor DOE's and NNSA’s implementation of actions 
to resolve its safety, security, and contract and project management 
difficulties and to assess the impact of these actions. 


Chairman Murphy, Ranking Member DeGette, and Members of the 
Subcommittee, this completes my prepared statement. I would be 
pleased to respond to any questions you may have at this time. 


^®GAO, Nuclear Weapons: NNSA and DOD Need to More Effectively Manage the 
Stockpile Life Extension Program. GAO-09-385 (Washington, D.C.: Mar. 2, 2009). 

^®GAO, Nuclear Weapons: Improved Management Needed to Implement Stockpile 
Stewardship Program Effecdvely, GAO-01-48 (Washington, D.C.; Dec. 14, 2000). 
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Mr. Murphy. Thank you. We will go through these quickly. 

I want to start off. Dr. Meserve, one of the messages from your 
work and General Alston’s work is the lack of an embedded secu- 
rity culture from DOE headquarters on down through the various 
nuclear weapons complex facilities. As a former chairman of the 
Nuclear Regulatory Commission, you have experience with embed- 
ded safety culture. Am I correct on that? 

Mr. Meserve. That is correct. 

Mr. Murphy. And the lessons — what lessons, from your experi- 
ence of NRC regulation of the civilian nuclear industry can apply 
to establishing strong security culture at DOE’s facilities and oper- 
ations? Can you give us an example? 

Mr. Meserve. Well, let me say that I think that perspective of 
the NRC has been that a safety culture is the critical foundation 
for ensuring the safe operations of the plants. That without that 
commitment, you have a problem that in regardless of how detailed 
the requirements are, ultimately you have to demand the people 
fulfill their obligations and take responsibility, and the safety cul- 
ture, which is something that affects everyone in the plant, is the 
foundation. 

So I came to this project with that perspective, and I think that, 
as has been mentioned, and General Alston emphasized this in his 
remarks, is that culture is the critical ingredient, and that is some- 
thing that has to change to have something that will be sustained 
over time. People see this as responsible as their clear responsi- 
bility at every level at the facility and at headquarters. 

Mr. Murphy. And that is the same as sustained training for se- 
curity personnel, I am assuming? 

Mr. Meserve. It means sustained training. It means a responsi- 
bility of everyone in the plant, when they see a problem, to raise 
that issue up. If their immediate supervisor doesn’t take it up, it 
means going above that person. It means having a system in place 
so that no one is — faces any discipline or discrimination as a result 
of the fact that they have raised an issue like that. It is people to 
be rewarded if they take initiative to respond. And that is the sort 
of thing you need in the security area as well. 

Mr. Murphy. Thank you. 

General Alston, you stated in your report that nuclear weapons 
sites leverage their unique missions and geography to justify a pre- 
ferred, what you called “alone and unafraid” mantra, and that DOE 
and NNSA headquarters has employed a largely hands off re- 
sponse. What do you mean by “alone and unafraid?” 

General Alston. Mr. Chairman, at Y-12 specifically, earlier in 
the year, earlier in calendar year 2012, the site security apparatus 
had upgraded their security system, and they — there was a multi- 
$100 million option, and this was still a very expensive option of, 
I can’t remember, $60 to $70 million. And so they went forward 
with this $60 to $70 million modification to their overall security 
capability at the site, but when they deployed that capability early 
in the year, it had flaws that needed to be worked out, and that 
was widely known, but they operated anyway, generated hundreds 
of alarms, false alarms or nuisance alarms a month, conditioned 
the force, I would argue, to not respond with urgency because they 
were being conditioned that the alarms are systemic shortcomings. 
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There was — they moved towards the accounting for the alarms and 
less running to the sounds of the guns, which I think was mani- 
fested on the morning of July 28, because of the delayed response, 
because it was another false or nuisance alarm, if you will. And in 
that whole effort, though, was — from my perspective — was Y-12 
saw a way to improve its security, and in my view, I saw evidence 
they conceived, designed, developed, and deployed this capability at 
Y-i2, defending their unique geographical challenges to secure 
that facility, and in making their, if you will, one off approach to 
this, to be dominant between the relationship between Y-12 and 
the headquarters. And so there was not evidence of a strong, dis- 
ciplined, central management of security modifications so that the 
field can, soup to nuts, take a look at what they determined to be 
shortcomings, and then worked the solution set on their own with- 
out what I think is more appropriate, a good operational test eval- 
uation program where someone is accountable in the headquarters 
for the next gate you go, and that nobody lives with a sub-opti- 
mized system that is not operating perfectly on day one. 

Mr. Murphy. Is this systemic across NNSA? 

General Alston. Well, we found a different approach at Pantex. 
I can’t tell you the current state of this, so maybe Dr. Meserve can 
amplify this, but the ARGOS system, and I can’t tell you what the 
acronym stands for, but it is a comprehensive security approach 
that is present at all of their sites. But depending on how you ma- 
nipulate part of the overall ARGOS architecture at your particular 
site, they may not be precisely identical at each one of the facili- 
ties. So as these folks were trying to integrate the changes to their 
security apparatus and blend in to this ARGOS concept, there is 
so much freedom of movement at each one of the sites that I think 
there is great opportunity being missed trying to centralize com- 
mon standards and force a common approach and making the sites 
defend being different than the common approach, as apposed to 
right now, which is give them the benefit of the doubt that they 
need to support the one off approach and that the common stand- 
ards get subordinated to the unique approach. I don’t know if I said 
that right. 

Mr. Murphy. Thank you. That helps a lot, but as this goes 
through, I can’t help, as I am hearing these stories about security 
issues, too, of the people watching the radar on Pearl Harbor on 
December 7 said oh, pay no attention to those blips, that is just 
probably our planes coming over, or on 9/11. These things continue 
on, and hope that the security force is not going to just look past 
these things. I mean, to recognize a situation like this, as Mr. 
Meserve, you put in your letter that sometimes training of terror- 
ists is to look nonthreatening, and you have to be ready for deadly 
force, and this could have ended up in a deadly situation, and we 
are hoping these things are avoided in the future. 

I am out of time. I am going to go Ms. DeGette now from Colo- 
rado. 

Ms. DeGette. Thank you very much, Mr. Chairman. 

Mr. Trimble, when you were reciting the whole litany of prob- 
lems that we have had with the various labs, it was like I was re- 
living my congressional career. So I want to ask you, have you read 
General Finan’s report? 
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Mr. Trimble. Yes, I have. 

Ms. DeGette. And what is your opinion of her recommenda- 
tions? 

Mr. Trimble. You know, all the recommendations sound sound. 
We have not done a full evaluation or anything of that nature. I 
think our reaction to the reports, as well as the actions DOE has 
already taken is sort of the proof is in the pudding. 

Ms. DeGette. Yes, so you think it is a good direction, hut you 
want to make sure it gets implemented? 

Mr. Trimble. Yes, and I think even more than that, it would he 
where is the implementation plan? 

Ms. DeGette. Right. 

Mr. Trimble. So we have got a lot of oK, we are going to do this, 
we are going to do that, hut where is the DOE summary of all of 
these efforts saying hey, this is our assessment of all this good 
work these people have done, and here is our plan with metrics 
and dates and who is accountable going forward. 

Ms. DeGette. OK. And General, have you read General Finan’s 
report? 

General Alston. No, ma’am, I have not. 

Ms. DeGette. OK. 

General Alston. Her report was in draft while we were essen- 
tially commissioned by Secretary Chu. 

Ms. DeGette. Are you familiar with her recommendations? 

General Alston. I am familiar with a lot of them. I couldn’t re- 
cite them for you. 

Ms. DeGette. I am not asking you to. Good news, I only have 
5 minutes. 

So my question, though, is do you think she is going in the right 
direction with her recommendations, based on your assessments? 

General Alston. I do. Where I was encouraged particularly by 
her approach was trying to certainly recognize the field short- 
comings, but the headquarters chain 

Ms. DeGette. Right. 

General Alston [continuing]. Needs to be fixed, and it needs a 
solid focus on it. 

Ms. DeGette. It needs to be clarified, right? 

General Alston. Absolutely. 

Ms. DeGette. Yes, what about you. Dr. Meserve? 

Mr. Meserve. My response would be the same. 

Ms. DeGette. OK. Now every few years — I alluded to this in my 
previous questioning. Every few years, some in Congress suggest 
that NNSA should be autonomous. From oversight last year, the 
House passed the National Defense Authorization Act that in- 
cluded a provision providing additional autonomy from oversight by 
this committee, for example, for NNSA. Luckily, this language was 
not in the final law and part of our job is to make sure that we 
have adequate oversight, so we are glad it wasn’t in the final law. 
I think, and all of us on this committee think, the Y-12 security 
breach shows that the NNSA is simply not ready for that level of 
autonomy that the National Defense Authorization Act con- 
templated. 

So General, I want to ask you and Mr. Meserve, were any of the 
issues you identified caused by a lack of autonomy for contractors 
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and those who worked for Y-12? Were they caused by a lack of au- 
tonomy? 

General Alston. I would say that the consequence of the rela- 
tionship between the semi-autonomous nature of NNSA and the 
Department of Energy did cause a conflict in ambiguity for policy, 
and so, the NNSA was dependent upon Department of Energy ap- 
paratus for independent inspection by HSS and the Inspector Gen- 
eral properly so. 

Ms. DeGette. So what you are saying is the autonomy that they 
had actually caused some of the problems? 

General Alston. That they didn’t have sufficient autonomy for 
them to be exclusively accountable for the failure. 

Ms. DeGette. OK, and that was because they were partially re- 
porting to DOE? 

General Alston. Because the field would look up the chain of 
command, and there were limits to how beholden they were to the 
NNSA because certain policy elements were the purview and do- 
main of organizations in the headquarters that were outside 
the 

Ms. DeGette. So it was because it wasn’t fish or fowl, they were 
semi-autonomous, right? 

General Alston. Yes, ma’am, and Dr. Meserve may have a bet- 
ter way to say this from our perspective. 

Ms. DeGette. Dr. Meserve? 

Mr. Meserve. I think that part of the problem was not the au- 
tonomy of NNSA but the fact that there is a very confusing struc- 
ture. 

Ms. DeGette. Within the agency. 

Mr. Meserve. If something was simplified and then clear lines 
of authority and responsibility is what is necessary. 

Ms. DeGette. Right. 

Mr. Meserve. That could be done with an autonomous NNSA. It 
could be done with the current structure, but having clear guide- 
lines of who is in charge of what. 

Ms. DeGette. The problem wasn’t — yes, I got you. The problem 
wasn’t whether it was autonomous or not, the problem was there 
wasn’t a chain of command. 

I want to ask you very quickly, Mr. Trimble, do you think that — 
does the GAO believe that NNSA’s issues can be solved through a 
simple structural change? 

Mr. Trimble. We have previously testified that we do not. We 
think the issues that need to be addressed can be done with the 
current structure, and again, it is cultural changes, sustained ef- 
fort. 

Ms. DeGette. Thank you. 

Mr. Murphy. The gentlelady yields back. 

Now recognize the gentleman from Ohio, Mr. Johnson, for 5 min- 
utes. 

Mr. Johnson. Thank you, Mr. Chairman, and gentlemen, thank 
you for being with us today. 

Dr. Meserve, if the Department of Energy office responsible for 
independent oversight is subjected to political retaliation for con- 
ducting that oversight, how would that impact their ability to re- 
main objective and independent, in your view? 
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Mr. Meserve. Well I mean, the obvious danger is that if they are 
being criticized for doing their job that they will then back off doing 
what they are supposed to be doing. And so I think that that would 
be unfortunate, that if they didn’t have a clear view of what their 
obligations were and their mission is. 

Mr. Johnson. OK. General Alston, what is your view of the im- 
portance of independent oversight? 

General Alston. I think that it is appropriately integrated in a 
mosaic of sensors and indicators to tell you how sturdy your readi- 
ness, or in this case, the quality of the security. I think that if you 
move too much towards depending on independent inspection and 
evaluation, you are missing great opportunity to have — to defend 
yourself against crisis. You are focused on defending against crisis 
and ultimate failure, but you are not taking advantage of building 
routine relationships and seeing whether or not your organization 
has the capacity to recognize failure when the conditions begin to 
present themselves. If you need someone outside to tell you how 
ready you are, you may not have the skill yourself to know your- 
self So I believe it needs to be a mosaic of inputs that are con- 
verging at the right level to give the leadership at the local, inter- 
mediate, and the higher levels the competency and the confidence 
in just what the quality of the performance of the unit is. 

Mr. Johnson. I couldn’t agree with you more, and it is analogous 
to — I know in my 261/2 year career in the Air Force, you have your 
unit mission, you have standards and evaluation who are the inter- 
nal looks, eyes, and ears to make sure that you are following those 
rules, but you also have the Inspector General who takes a look 
from the outside, and both are very, very important. 

Back to the issue, though, of political retaliation. To both of you, 
what impact would political retaliation have on safety and security, 
the culture of safety and security? You mentioned. Dr. Meserve, 
that people would just stop. 

Mr. Meserve. Well, you need to have a system that reinforces 
the priority that is to be given for safety and security, and that 
anything that interferes wifii the capacity for people to have a will- 
ingness to confront those issues honestly and to address them thor- 
oughly is a detriment to achievement of safety and security. And 
that could be through political process, through fear of retaliation 
by a superior, there is any number of things that could affect it, 
but the point here is to keep your eye on the ball and anything that 
distracts you from that is a negative factor. 

Mr. Johnson. Sure. 

Mr. Meserve. And I couldn’t agree more with General Alston is 
that one ought not to anticipate that you are counting on oversight 
function as your primary means to prevent shortfalls. That respon- 
sibility has to be in the line organization that is responsible for the 
job, and they should be held accountable for it. The oversight is a 
protective mechanism to make sure that they are fulfilling their 
function adequately and appropriately. 

Mr. Johnson. Absolutely. 

General Alston. And sir, I would add just one point, and that 
is if you don’t have at a grass roots level the kind of environment 
where the folks will come forward to expose weakness and chal- 
lenge, you are not going to get to the self-critical culture — the level 
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of self-critical culture that you really need in this business where 
the stakes are so high. 

Mr. Johnson. Yes, I couldn’t agree with you more. 

General, given the site’s, I quote, “alone and unafraid” posture, 
how important, in your opinion, are standardization, 
benchmarking, and best practices to achieving and sustaining high 
security levels? 

General Alston. Sir, clearly they feed every day. When you can, 
on a routine level, have the lines of communication sufficiently 
open where there is collaborative process, and standards don’t have 
to be issued from above, there can be collaboration. It builds trust, 
it builds flow of information up and down the chain. Myself and 
Mr. Augustine came to the conclusion that the federalization of the 
correct protective force should be given serious consideration, and 
the reason — I am a unity of command guy, and that creates a seam 
with the operator, who is enriching uranium or whatever the other 
part of the mission would be, and so it is a little odd for me to have 
come down on this side. But for precisely the reasons of standard- 
ization and more centralized control and impact that I felt that 
that would be one means by which that could be achieved. 

Mr. Johnson. Well thank you. Mr. Chairman, I actually do have 
one more question, if it would please the chair that I could ask it, 
otherwise I will yield back. 

Mr. Murphy. We will give you an additional minute. 

Mr. Johnson. OK. 

General Alston, one final question. General Finan’s task force 
noted a distinct bias against finding and stating performance criti- 
cisms. You stated your belief that one of the attributes of a security 
organization is, and I quote, “an absolute intolerance for shortfalls, 
deficiencies, outages 1 minute longer than necessary.” What must 
happen for NNSA to transition from General Finan’s assessment to 
the attribute that you describe? 

General Alston. I played an active role as the Air Force was re- 
covering from its epic failures. I was required to produce a road 
map, and there were a lot — obviously we were on fire, and there 
were a lot of activities that had to go on there. But one of the 
things that we instituted was to find structural mechanisms to 
prove leadership commitment, and so the Chief and Secretary cre- 
ated a nuclear oversight board that met quarterly, and it was a 
forum where everyone with nuclear equities at the senior level 
would meet. But it was a forum where you could expose whatever 
level of detail that you wanted to expose, and in the case of the 
failure that we saw at Y-12, it wouldn’t require so much the senior 
levels at NNSA, but there needs to be a process where the connec- 
tion is reinforced so that you are tracking outages to the right 
level, and for example — or equipment shortages, and that there is 
a recurring forum so that routine interaction can fortify commit- 
ment to the security part of the enterprise. 

Mr. Johnson. Thank you. General. 

Mr. Chairman, I yield back. 

Mr. Murphy. All right, now recognize the gentleman from New 
York, Mr. Tonko, for 5 minutes. 

Mr. Tonko. Thank you, Mr. Chair. 
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The obvious major part of NNSA’s work is security, but equally 
important is providing their employees with a safe working envi- 
ronment. The consequences of safety failures are serious and for 
example, in October of ’07, GAO reported that nearly 60 serious ac- 
cidents or near-misses had occurred at NNSA’s national labs since 
2000. Just to give one example, GAO described a 2004 accident 
where a student working at the NNSA facility at Los Alamos was 
blinded in a laser accident. 

Mr. Trimble, you had indicated in your testimony that GAO has 
been conducting assessments of safety at NNSA for quite some 
time, and while I heard some of the results being mentioned here, 
I am more — I would like to know, more importantly, how the agen- 
cy is fairing. Are they getting better at addressing safety concerns? 

Mr. Trimble. I would like to say yes, but as of now, I can’t say 
that our work is showing that. I think one of the things that is rel- 
evant to the discussion today that ties into the safety and security 
reform initiatives from 2010 is we have previously reported that 
those initiatives did not address our concerns previously expressed 
regarding the safety culture at NNSA and specifically, we noted 
that some of those reforms we viewed weakened federal inde- 
pendent oversight by making HSS’s role sort of more of a “Mother, 
may I” in terms of being able to come in and inspect facilities. And 
I think in our testimony as well, we note since our last testimony 
on these matters in the fall, there have been numerous other safety 
incidents that have been reported. So our concerns necessarily con- 
tinue. 

Mr. Tonko. Thank you. You also made mention, and I will quote, 
that “they have not demonstrated sustained improvements in 
terms of their safety reforms.” Can you tell us about NNSA’s recent 
efforts to reform those measures in terms of safety protocols? 

Mr. Trimble. I don’t know about protocols, per se. I think the 
2010 safety initiative, the reform initiative, you did a lot to — there 
is a lot of good in there in terms of consolidating or rationalizing 
directives, et cetera. Again, as I noted, we saw problems with it, 
but as with security, the issue is one of sustainment. You go 
through these same periods of an accident happens, it gets atten- 
tion, you have remedial measures, and then attention wanes and 
you go through the same cycle once again. 

Mr. Tonko. So then what should the agency do or be doing to 
promote or improve worker’s safety? 

Mr. Trimble. Well, I think again it is — one, it is a continued and 
sustained effort in addressing sort of a cultural issues that have 
crept in. I think you see, just as in security where you have the 
divide between headquarters and the field units, there is a divide 
there in terms of the importance and differing perceptions, per- 
haps, of the level of importance this sort of mission holds. 

Mr. Tonko. And in terms of any oversight protections? 

Mr. Trimble. In terms of oversight? Well, independent — clearly, 
we haven’t been on the record in terms of having robust inde- 
pendent oversight, much like in the security realm, so bolstering 
the role of HSS in that regard I think is essential. 

Mr. Tonko. OK. I will yield back, Mr. Chair. 

Mr. Murphy. Thank the gentleman, and I want to say that for 
all the panelists, I thank you today, both panels. I also want to 
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note that certainly at times like this when we have hearings about 
security issues, security breaches, there are those who want to see 
where weaknesses are. They certainly take note of the comments 
made, and we recognize a lot of the things are being done for secu- 
rity remain certainly in the classified levels. But in a situation like 
this, I think it gives the ranking member and I and members of 
both sides of the Aisle confidence to know that actions are being 
taken, because in a world where terrorists on any level may take 
action against our interests at site such as this or other ones, that 
our Nation will be strong and stand up and prevent problems in 
the future with this. And so we thank you for your comments and 
good Americans to help us with that security. 

I ask unanimous consent that the contents of the document bind- 
er and all the Majority memos be introduced into the record, and 
authorize staff to make appropriate redactions. Without objection, 
the documents will be entered into the record with any redactions 
the staff determines appropriate. 

[The information appears at the conclusion of the hearing.] 

Mr. Murphy. And in conclusion, again, thank you to all the wit- 
nesses. I remind members they have 10 business days to submit 
questions for the record, and I ask all the witnesses agree to re- 
spond promptly to the questions. 

This committee is now adjourned. Thank you. 

[Whereupon, at 12:15 p.m., the subcommittee was adjourned.] 
[Material submitted for inclusion in the record follows:] 
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The Secretary of Energy 

Washington, D.C.205ffi 

May 5, 2010 


S'-Zf ,/o 

may 1 ? 2010 

/4> Doe 



The Honorable Joe Barton 
Ranking Member 

Committee on Energy and Commerce 
U.S. House of Representatives 
Washington, D.C. 20515 

Dear Congressman Barton: 

Thank you for your March 30, 2010, letter regarding the Department of Energy’s (DOE) 
Safety and Security Reform Plan. First, let me assure you that we are committed to 
maintaining the highest standards of safety and security at oim sites. DOE has conducted 
its nuclear operations for decades without a major accident and has long maintained 
worker injury and illness rates that are significantly below comparable industry standards. 
DOE also maintains a robust security protection posture for oUr nuclear sites, which has 
been rigorously tested to verify the capability to withstand the full range of postulated 
terrorist threats. Our management and operating contractors are responsible for safety and 
security performance, and we will continue to hold them directly accountable for 
achieving the safety and security requirements in their contracts. 

The goal of our reform efforts is to fulfill our mission objectives more effectively and 
more efficiently. We view safety and security to be integral to those mission objectives. 
To that end, we are undertaking efforts to improve our safety and security directives and 
internal oversight processes. In our review of the Department’s safety and security 
directives, we plan to maintain an appropriately robust set of regulatory-based and 
contractually applicable requirements, while eliminating redundant requirements. Further, 
we are refocusing our Federal oversight and enfbrcanent efforts to more specifically 
target areas of greatest risk. 

DOE’S oversight of safety and security perfonnance has not and will not diminish. The 
Office of Independent Oversight, within the Office of Health, Safety and Security (HSS), 
has undertaken numerous new activities that have actually increased its field presence and 
knowledge concerning site safety and security program performance. With respect to 
security, HSS will conduct an assessment at il facilities with Category 1 special nuclear 
materid before the end of the calendar year. 

As stated in the Reform Plan, the only oversight activities that have been suspended are 
those associated with lower risk standard industrial operations. Similarly, these are the 
only activities affected by the National Nuclear Security Administration’s (NNSA) six- 
month moratorium on internally-driven assessments. Activities will continue to be 
subjected to local monitoring by DOE and NNSA site offices on an as-needed basis and 
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will be subjected to independent oversight when site performance requires increased 
attention (e.g., for-cause reviews and regulatory enforcement actions! 

Shifting independent oversight resources previously devoted to these activitira has 
increased the resources available to assist line managers in tackling difficult challenges 
and solving problems that have remained unresolved by layers of duplicative oversi^t in 
the past. For NNSA, shifting its resources will allow DOE to develop an integrated and 
comprehensive oversight approach and devote needed resources to ensuring that 
contractors are implementing effective assurance systems. Our efforts have already 
resulted in significantly increased communication and cooperation among all departmental 
elements. 

We are currently conducting a series of congressional committee briefings on our reform 
goals and activities. Gleim Podonsky, the Department’s Chief Health, Safety and Security 
Officer, is working to schedule a briefing with the Energy and Commerce Committee’s 
minority staff to provide additional information on implementation of the Department’s 
Reform Plan. 

If you have any questions, please have your staff contact Betty A. Nolan, Senior Advisor, 
Office of Congressional and Intergovernmental Affairs, at (202) 586-5450. 

Sincerely, 

Stevai Chu 

cc: The Honorable Michael C. Burgess 

Ranking Member 

Committee on Energy and Commerce 
Subcommittee on Oversight and Investigations 
U.S. House of Representatives 

The Honorable Henry A. Waxman 
Chairman 

Committee on Energy and Commerce 
U.S. House of Representatives 

The Honorable Bart Stupak 
Chairman 

Subcommittee on Oversight and Investigations 
U.S. House of Representatives 
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i;sk K .w Department of Energy 

W Notional Nuclear Security Administration 

Washington, DC 20585 

DEC 1 3 2012 ACT-NA-72-12-12-2012-484945 


MEMORANDUM FOR DISTRIBUTION 

THRU: MICHAEL K. LEMPKE/L4^ 

ASSOCIATE ADMOTCTRA'lm^ 

FOR INFRASTRUCTURE AND OPERATIONS 

FROM: SANDRA E. FINAN, BRIG GEN. USAFc" A ' 

ACTING ASSOCIATE ADMINISTRATOR ' 

FOR DEFENSE NUCLEAR SECURITY 


SUBJECT: Directive Rescission and impact Assessment 


T his memorandum rescinds direction and suspends actions being taken in 
response to the attached memorandum dated August 31, 201 1, Direction for 
Recently Issued Departmental Orders for Certain Safeguards and Security 
Program Areas. We intend to execute a deliberate process to restore the 
Department of Energy (DOE) directives as the baseline safeguards and security 
policy for the National Nuclear Security Administration (NNSA) and this is an 
important first step. This direction applies to all NNSA contracts to include 
contracts managed through die Office of Acquisition and Supply Management, 
but docs not apply to NNSA Headquarters (i.e., District of Columbia and 
Germantown). Tbe directives that are currently on the contracts will remain until 
the Office of Associate Administration for Management and Budget provides a 
formal notification. 

Executing this transition effectively will require collaboration among the 
Headquarters, Federal Site Offices, and the contractor community. As we 
implement this initiative, we need to fully understand the impact on our partners 
across the nuclear security enterprise before modifying any contracts. We request 
that you conduct an impact assessment and report your results. 

Please identify issttes that will have a measurable cost or significant operational 
impact on your implementation of the following DOE Orders; 

(A) 470.4B, Safeguards and Security Program, July 21, 2011; 

(B) 473,3, Protection Program Operations, June 27, 201 1 (Attachments 1 
and 2, Federal and Contractor Protective Force); and 

(C) 474.2, Nuclear Material Control and Accountability, June 27, 2011. 
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Your impact responses should address the foUowii^ two elements: 

(1) Describe any significant issues that would result from implementing 
the cuirent DOE directives, mcludiug cost impacts. Identify specific 
areas where implementation of current DOE directives will require an 
implementation plan beyond a six-month implementation. Please 
include page, section, and paragraph number- cross-references for the 
current DOE Orders and existing contract directives that support your 
issues. 

(2) Describe your proposed resolution to address any significant issues 
caused by implementing the current DOE Orders, including potential 
use of equivalencies and exemptions processed in accordance with 
DOE 0 25 1 . 1C, Departmental Directm Program Januai-y 1 5, 2009. 

By January 31, 2013, please report your assessment of the costs and schedule for 
implementing the DOE Orders to DNSCorrespondence@raisa.doe.gov. Inquiries 
regarding this direction should be referred to Mr'. Laity Small, Office of Field 
Support, at (202) 586-1412. 

Attaclunent 

Distribution: Jeffery Harrell, NA-15 
Douglas Ash, NA-74 
MarkHolecek,KCSO 
Kevin Smith, LASO 
Kimberly Davis, LSO 
Steven Erhait, NPO-1 
Stephen Mellington, NSO 
Douglas Dearolph, SRSO 
Geoffrey Beausoleil, SSO 

cc: Neile Miller, NA-2 

James McConnell, N.A-00 
Joseph Waddell. NA-APM-10 
Don Cook, NA-10 
Catherine Tullis, NA-MB-20 
Frank Lowery, NA-70 
Catherine McCulloch, NA-70. 1 
Paul Saunders, NA-71 
Donald Stout, NA-72 
Robert Osborn 11, NA-lM-1 
Wayne Jones, NA-IM-I 
Laurel Hautala, KCSO 
Michael Duvall, LASO 
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Duane Gordon, LSO 
Gary Wisdom, NPO-20 
Raeford Phifer, Jr., N50 
Roxanne Jump, SRSO 
Eileen Johnston, SSO 
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Department of Energy 
National Nuclear Security Administration 
Washington, DC 20585 


August 31, 201 1 



MEMORANDUM 

FROM: 



UTF 


SE. 



CHIEF7DEFENSE NUCLEAR SECURITY 


SUBJECT; Direction for Recently Issued Departtnental Orders for Certain 

Safeguards and Security Program Areas 


Recently, the Department of Energy (DOE) issued several new Orders pertaining to the 
Safeguards and Security Program, specifically DOE Order (0) 470.4B, Safeguards and 
Security Program, dated July 21, 201 1; DOB O 474.2, Nuclear Material Control and 
Accountability, dated June 27, 2011; DOE Standard 1 194 201 1 for Nuclear Material 
Control and Accountability, dated June 201 1; and DOE O 473.3, Protection Program 
Operations, dated June 27, 2011. As with all new directives, sites have six months to 
either meet all new requirements or develop and approve implementation plans toward 
that end. 

Subject matter experts from the nuclear security enterprise (NSE) have been working 
togetlier to develop and promulgate specific National Nuclear Security Administration 
(NNSA) security policies. The NNSA Policy Letters (NAPs) which correspond with the 
above referenced Departmental Orders are near completion and should be ready in the 
near future. Tlierefore, NNSA sites should not take action to conduct an impacts 
assessment of the new Orders or place them on the site contracts. The existing Orders 
should remain on the site contracts until the respective NAP is issued by the 
Administrator and placed on the site contracts. This direction also extends to Federal 
entities located outside of the Washington D.C. metro area and possessing and non- 
possessing contractors managed out of the Office of Acquisition and Supply 
Management. 

The draft NNSA Program Planning and Management NAP is in the review process 
within NNSA at this time and we anticipate it to be published ■within the next few 
months. We are currently working on the draft Protection Program Administration NAP, 
which is also expected to be issued in the neat future. Both of these NAPs will replace 
DOE 0 470.4B. Likewise, the draft NAP for Nuclear Material Control and 
Accountability is in the final coordination process and is also expected to be promulgated 
before the end of the year, and will replace DOE 0 474.2. 

The new DOE O 473,3 establishes requirements for three separate topical areas; Physical 
Protection, Contractor Protective Force, and Federal Protective Force. The Physical 
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Protection requirements in DOE O 473.3 were replaced by NAP 70.2, Physical 
Protection, in June 20 1 0. The draft NAP for Protective Force, which provides 
requirements for contractor protective forces, is in the final stages of development and 
will replace DOE O 473.3, Attachment 2, Contractor Protection Force. Due to the 
complexity of the revision to 10 Code of Federal Regulations (CFR) 1046, we cannot 
guarantee that this NAP will be promulgated this year. We expect the draft 10 CFR 1046 
will undergo the rulemaking process shortly and anticipate its completion in the near 
flitare allowing us to finalize the NNSA Protective Force NAP. Therefore, 

DOE 0 473.3, Attachment 2, should not be implemented at this time. If the rulemaking 
process takes longer than anticipated, our office will reevaluate. Finally, our office does 
not have responsibility for Federal Protective Forces and we will therefore not be 
addressing those requirements in DOB O 473.3. 

As we continue our efforts to develop additional NNSA policies for the other security 
topical areas, there will be more opportunities to tailor and streamline the Defense 
Nuclear Security requirements program to our mission and operations. I appreciate your 
continued support through this process to ensure that we achieve the greatest benefits in 
terms of cost savings and increased operational efficiencies from this effort while 
maintaining an effective security program. 

If you have any questions or wish to discuss this matter further, please cal! 

Mr. Kevin Leifheit, Director, Office of Field Support (NA-72), at (202) 586-4400, or 
Mr. Michael Bodin {NA-72) at (202) 586-7610. 

Distribution; Joseph Waddell, NA-APM-10 
Mark Holecek, KCSO 
Alice Williams, LSO 
Kevin Smith, LASO 
Stephen Mellington, NSO 
Jeffrey Harrell, OST 
Steve Erhart, PXSO 
Douglas Dearolph, SRSO 
Patty Wagner, SSO 
Theodore Sherry, YSO 

cc: Donald Cook, N A- 1 0 

Kevin Leifheit, NA-72 
Larry Wilcher,HS-50 
Laurel Hautala, KCSO 
Daune Gordon, LSO 
Pamela Valdez, LASO 
Raeford Phifer Jr., NSO 
Mark Jackson, OST 
Gary Wisdom, PXSO 
Carroll McFall, SRSO 
Roxaraie Jump, SRSO 
Eileen Johnson, SSO 
Donat St. Pierre, YSO 
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The Deputy Secretary of Energy 

Washing^n, DC 20585 
March 16, 2010 


MEMORANDUM FOR KRISTINA M. JOHNSON, UNDER SECRETARY OF ENERGY 
STEVEN E. KOONIN, UNDER SECRETARY FOR SCIENCE 
THOMAS P. D'AGOSTINO, UNDER SECRETARY FOR 
NUCLEAR SECURITY 

GLENN S. PODONSKY, CHIEF HEALTH, SAFETY AND 
SECURITY OFFICER 

INGRID A. C. KOLB. DIRECTOR. OFFICE OF MANAGEMENT 
SCOTT BLAKE HARRISireENfiRAL COUNSEL 


FROM: 

SUBJECT: 



DANIEL B. PONEMAl^ 

Department of Energy 2010 Safety and Security Reform Plan 


The Department has recently developed the attached end-state vision for safety and security 
reform, which will guide our efforts to enhance productivity and achieve the Department’s 
mission goals while maintaining the highest standards of safe and secure operations at 
Department of Energy facilities. It is imperative that we initiate the necessary actions quickly to 
attain this end state in 20 1 0. 

In 2009, the Office of Healtli, Safety and Security (HSS) began reforming its approach to 
enforcernent and oversight by recognizing line management’s responsibility for safety and 
security, reviewing opportunities for streamlining requirements, and eliminating directives that 
do not add value to safety and security. 1 have tasked HSS to conti.nue this reform path, but they 
will need your input, cooperation and support. Therefore, please assure that senior managers and 
key staff from your Headquarters and field organizations are working closely with HSS to 
achieve our common goals. 

The attached Plan outlines actions and milestones that require your attention. I recognize that 
this is a major effort and will involve the timely commimient of valuable resources, but your 
support, as well as input from the Defense Nuclear Facilities Safety. Board and our stakeholders, 
is vital to our success. 

Success will be measured through near-term relief from specific low-value burdensome 
requirements as well as longer-term streamlining of requirements that will lead to measurable 
productivity improvements. Please keep me informed of our progress and to alert me in a timely 
manner of any impasse that needs my attention. 

Attachments 


M .i& Sty <» 
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cc: InesTriay, EM-1 

William Brinkman, SC-1 

Pete Miller, NE-1 

James Markowsky, FE-1 

Cathy Zoi, EE-1 

David Geiser, LM-1 

Mike Weis, PNSO, FMC Chair 

Jeff Smith, ORNL, Deputy Director 

A1 Romig, SNL, Deputy Director 

Adam Cohen, PPPL, NLDC Executive Secretary 
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Attachment 1 


End-State Vision for Safety Reform 

To enhance productivity and achievement of mission goals, while maintaining the highest 
standards of safe operations at DOE facilities through the development, implementation, and 
assurance of effective, streamlined, and efficient safety policies and programs. 

Safety Performance: Contractors are provided the flexibility to tailor and implement safety 
programs in light of their situation without excessive Federal oversight or overly prescriptive 
Departmental requirements. 

Safety Responsibilities: To facilitate effective mission accomplishment, decision-making 
authorities are pushed to the lowest appropriate level of contractor and Federal management, 
considering hazards, risks, and perfonnance history. Authority and accountability for safety 
rests with line management, including responsibility for and oversight. 

Safety Requirements: DOE worker safety requirements are based upon existing national 
standards, with internally-derived requirements developed to address unique DOE conditions. 
DOB’S regulatoiy requirements for occupational safety and health are founded on regulations 
promulgated by tlie Occupational Safety and Health Administration (OSHA), invoke current 
national standards to address outdated aspects of OSHA regulations, and establish or invoke 
requirements to address unique DOE workplace hazards. The Department’s corporate approach 
for maintaining the highest standards of safe operations is promoted through its Integi-ated Safety 
Management Policy, DOE P 450.4, Safety Management System Policy, and implemented by 
contractors through Department of Energy Acquisition Regulation Clause 970.5223-1, 
Integration of Environment, Safety and Health into Work Planning and Execution. 

Safety Assurance: The Department’s contractors maintain an assurance system that provides 
reliable measurement of the effectiveness of their safety management systems and facilitates 
timely corrective actions to system or perfomiance weaknesses. 

Regulatory Oversight and Enforcement: HSS’s approach to safety regulatory oversight and 
enforcement supports line management’s efforts to affect the conduct and priorities of their 
contractors. Oversight is focused on safety performance. Oversight inspections and enforcement 
actions are prioritized for contractors with poor safety records and serious or recurring violations, 
and are consistent with approaches and penalties employed by OSHA and the Nuclear 
Regulatory Commission. 
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Attachment 2 


End-State Vision for Security Reform 

To enhance productivity and achievement of mission goals, while protecting sensitive 
information, technologies, and materials through the development, implementation, and 
assurance of effective, streamlined, and efficient security policies and programs. 

Security Performance: Contractors are provided the flexibility to tailor and implement security 
programs in light of their situation and to develop corresponding risk- and performance-based 
protection strategies without excessive Federal oversight or overly-piescriptive Departmental 
requirements. 

Security Responsibilities: To facilitate effective mission accomplishment, decision-making 
authorities are pushed to the lowest ^propriate level of contractor and Federal management, 
considering vulnerabilities, risks, and performance history. Authority and accountability for 
security rests with line management, including responsibility for oversight 

Security Requirements: DOE security strategies are based upon legally mandated 
requirements, national standards developed by peer agencies, a rational threat assessment, and 
internally derived requirements developed to address unique DOE security risks. DOE-unique 
security requirements are streamlined, non-redundant, focused on desired performance outcomes, 
and tailored to specific mission and site risks. DOE security requirements are standardized 
where necessary to support interoperability and cost savings. 

Security Assurance: The Department’s contractors maintain an assurance system that provides 
reliable measurement of the effectiveness of their security programs and facilitates timely 
corrective actions to system or performance weaknesses. 

Regulatory Oversight and Enforcement; HSS’s approach to independent oversight and 
regulatory enforcement supports line management’s efforts to affect the conduct and priorities of 
their contractors. Oversight is focused on security performance. Oversight inspections and 
enforcement actions are prioritized for contractors with serious or recurring violations of security 
requirements, with penalties commensurate with potential harm to national security and with 
those imposed by peer agencies. 
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Attachment 3 


DOE 2010 SAFETY AND SECURITY REFORM PLAN 


Background 

In 2009, the Office of Health, Safety and Security (HSS) began working to reform its 
enforcement and oversight approach, recognizing line management’s significant 
responsibility for safety and security. To date, this approach has resulted in (1) increased 
coordination of enforcement actions with line management, (2) woricing with the Field 
Management Council (FMC) to understand where reform in its oversight and 
enforcement practices is needed, (3) suqjending independent oversight of low-hazard 
operations and lower-value security assets, except for those cases where site performance 
requires increased attention, and (4) maintaining rigorous and informed oversight of hi^- 
hazmd operations or hi^-value security assets. 

In November 2009, following the safety and security reform studies directed by the 
Deputy Secretary, HSS began a disciplined review of all HSS directives, including a 
systematic review of the Department of Energy safety and security regulatory model 
(which includes both DOE directives and regulations). As a result, HSS identified 24 
directives for potential cancellation (subject to consultation with the Program Offices, 
including the Central Technical Authorities). HSS has also developed approaches for 
safety and security disciplines that ai-e expected to result in more than a 50 percent 
reduction in the number of existing safety and security directives for which HSS is the 
Office of Primary Interest. 

Priority Actions and Milestones 

The Department is setting the following safety and security reform goals and target 
milestones. The Department leadership team expects senior managers of Headquarters 
and field organizations actively to support these challenging efforts. Specifically, 
leadership of each Headquarters and field organization will need to ensure the timely and 
efficient engagement of appropriate managers and staff at all levels of the organization as 
needed to support HSS in achieving the actions listed below. 


Action 

Milestones 

Process: Initiate directives process changes to support the pace of this 
reform effort and require a rapid (3-day) escalation for impasse (veto) 
resolution. 

March 2010 

Outreach: Develop an outreach plan that will engage, inform and enlist 
the support of DOE internal and external stakeholders, (including the 
Defense Nuclear Facilities Safety Board) throughout this reform effort to 
achieve our end-state vision. Outreach includes a roundtable discussion 
with the Deputy Secretary, Under Secretaries, and various worker unions 
in March. 

March 2010 

Security Near-term: Provide relief from specific burdensome security 

March 2010 
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March 30, 2010 


The Honorable Steven Chu 
Secretary 

U.S. Department of Energy 
1000 Independence Avenue, S.W. 

Washington, D.C. 20585 

Dear Secretary Chu: 

We are writing with regard to a “Department of Energy 2010 Safety and Security Plan” 
recently reported in the press and described in a March 16, 2010, memorandum sent from the 
Department of Energy (DOE) Deputy Secretary Daniel Poneman to DOE senior management. 
According to Deputy Secretary Poneman, since 2009 the Department’s Office of Health, Safety 
and Security has been taking steps to reform its tgtproach to enforcement and oversight of safety 
and security at DOE facilities. The objective of &e plan appears to be to provide contractors 
■with the flexibility to tailor and implement safety and security programs ■without excessive 
federal oversight or overly prescriptive Departmental requirements. 

As you are aware, the Government Accountability Office (GAO) has conducted extensive 
revie^ws in the past relating to safety and security compliance at DOE sites. As GAO has 
documented in numerous reports and testimony before the House Energy and Commerce 
Committee, DOE has experienced significant challenges in the past managing effectively the 
many billions of dollars appropriated to the agency and the multiple projects which DOE is 
directed to carry out in both the civilian and defense areas. These challenges include 
documented concerns that DOE federal site offices, responsible for the day-to-day oversight of 
DOE contractors, may not have sufficient personnel with the necessary skills to manage and 
oversee effectively the work being performed by contractors at their sites. At the same time, 
contractor self-assurance and assessment systems may also be inadequate and/or not yet well 
developed to meet many of the Department’s tasks. 

Post 9/1 1 reforms and a series of incidents the Committee investigated over the past 
decade at Los Alamos National Laboratory, Lawrence Livermore National Laboratory, and 
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elsewhere focused needed attention on and prompted improvements in safety and security during 
the past Administration. Given the long history of DOE’s management challenges and the grave 
safety and security risks within the nuclear weapons complex, it is imperative that DOE ensure 
safety and security-related improvements that are currently in place can continue and be 
sustained and that DOE be cognizant of lessons from past incidents and management failures. In 
light of this, we have concerns particularly about whether, and the extent to which, DOE should 
be taking steps now to outsource safety and security measures to contractors vrithout strong 
federal oversight. 

To address our concerns, we sent the attached request to GAO today to ask for its 
assistance in evaluating the Department’s ongoing reform plan and related activities. In addition, 
we request that the Department (i) provide our Minority Committee staff with a briefing on the 
“Department of Energy 2010 Safety and Security Plan” and all related activities; and (ii) provide 
a written response vrith full information regarding any enforcement or oversight activities 
relating to safety and security that have been suspended during the past year, and assurances that 
suspension of those activities does not raise any security-related concerns. 

Thank you for your prompt attention to this matter. If you have any questions related to 
this request, please contact Mr. Alan Slobodin of Minority Committee staff at (202) 225-3641. 





be Barton 
banking Member 


Sincerely, 



Subcommittee on Oversight and Investigations 
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March 30, 2010 


Mr. Gene L. Dodaro 
Acting Comptroller General 
U.S. Government Accountability Office 
441 G Street, N.W. 

Washington, D.C. 20548 

Dear Mr. Dodaro: 

Over the past year. Department of Energy (DOE) Secretary Steven Chu has initiated or 
supported a number of significant changes in the priorities, management and direction of the 
Department, including initiatives that relate to agency oversight at some of the nation’s most 
sensitive national security facilities. In connection with these efforts, on March 16, 2010, 

Deputy Secretary Daniel Poneman issued a memorandum to DOE senior management describing 
initiatives the Department has taken to reform its approach to enforcement and oversight of 
safety and security, including at National Nuclear Security Administration (NNSA) facilities 
within the nuclear weapons complex. 

The memorandum describes a “Department of Energy 2010 Safety and Security Reform 
Plan” and provides an “end-state vision” for such reforms and a schedule for plan 
implementation to be completed this year (see Attachment). The objective of the plan, as 
reflected in the end-state vision, appears to be to provide contractors with the flexibility to tailor 
and implement safety and security programs without excessive federal oversight or overly 
prescriptive Departmental requirements. 

We write to request your assistance in evalirating DOE’s ongoing safety and security 
reform plan and related activities. We have received reports that during the past year as part of 
its reform initiative: 

• DOE’s Office of Health, Safety and Security has suspended some independent 
inspections of DOE and NNSA facilities within the nuclear weapons complex; 

• NNSA has suspended dozens of internal reviews and assessments; and 
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• NNSA and the Office of Science are implementing an oversight model at some of 
their sites that relies less on direct federal oversight and more on contractor self- 
assessment. 

DOE carries out many of the nation’s most critical national security-related missions, 
including stewardship of the nation’s nuclear weapons stockpile and the environmental 
remediation of the Cold War era nuclear weapons complex. As the Government Accountability 
Office (GAO) has documented in numerous reports and testimony before the House Energy and 
Commerce Committee, DOE has experienced significant challenges over the years in managing 
effectively the many billions of dollars appropriated to the agency and implementing all of the 
multiple projects which DOE is directed to carry out in both the civilian and defense areas. 

These challenges include documented concerns that DOE federal site offices, responsible for the 
day-to-day oversight of DOE contractors, may not have sufficient personnel with the necessary 
skills to manage and oversee effectively the work being performed by contractors at their sites. 
At the same time, contractor self-assurance and assessment systems may also be inadequate 
and/or not yet welt developed to meet many of the Department’s tasks. 

Post 9/1 1 reforms and a series of incidents the Committee investigated over the past 
decade at Los Alamos National Laboratory, Lawrence Livermore National Laboratory, -and 
elsewhere focused needed attention on and prompted improvements in safety and security during 
the past Administration. Given the long history of DOE’s management challenges and the grave 
safety and security risks within the nuclear weapons complex, it is imperative that DOE ensure 
safety and security-related improvements that are currently in place can continue and be 
sustained and that DOE be cogniaant of lessons fi-om past incidents and management failures. In 
light of this, we have concerns particularly about whether, and the extent to which, DOE should 
take steps now to outsource safety and security measures to contractors without strong federal 
oversight. Accordingly, we request that GAO undertake a review of these reform initiatives with 
a focus on the following questions: 

1 . What is the factual justification and basis for embarking on these reforms and the 
management model or approach DOE senior management relies upon to drive these high- 
level initiatives? 

2. What types of efforts have NNSA and DOE program and oversight offices launched in 
response to the Department’s ongoing safety and security reform initiatives, and what is 
their implementation status? 

3 . What independent oversight activities relating to safety and security have been suspended 
as DOE has pursued its safety and security reform initiatives, and does the suspension 
raise any safety or security concerns? 

4. Based on current progress and on the large body of work compiled by GAO, the DOE 
Inspector General, and a variety of DOE- and Congressionally-appointed commissions, 
what is the likelihood of success for the Department’s current safety and security reform 
initiatives, and where might the Congress most usefully direct its oversight resources? 

We request that GAO focus its efforts on NNSA because of its extensive contracting and 
project management activities and critical national security role and functions. In addition, we 
also request that GAO focus on DOE’s Office of Health, Safety and Security, because we have 
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particular concerns about the implementation of the Secretary’s initiatives in that office, which 
plays a key role in overseeing security and safety of DOE and NNSA operations. 

Thank you for your assistance with this matter. If you have any questions, please contact 
Mr. Alan Slobodin with the Committee Minority staff at (202) 225-3641 . 


Sincerely, 




Midyfel C. Burgess 
Ranking Member 
Subcommittee on Oversight and Investigations 


cc: The Honorable Henry A. Waxman, Chairman 

The Honorable Bart Stupak, Chairman 
Subcommittee on Oversight and Investigations 

Attachment 
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Department of Energy 
National Nuclear Security Administration 

Washtngton, OC 20585 


MEMORANDUM FOR THE ADMINISTRATOR 

FROM: SANDRA E. FINAN, BRIG GEN. USAF 

SECURITY TASK FORCE LEAD 

SUBJECT: Transmittal of Task Force Report on the Assessment of NNSA 

Federal Organization and Oversight of Security Operations 


Foiiowing the July 28. 2012. security incident at the National Nuclear Security 
Administration's (NNSA) Y<12 National Security Complex, a Task Force was 
commissioned on August 14. 2012, to analyze the current federal NNSA security 
organizational structure and security oversi^t model and recommend possible 
improvements. I was appointed to lead this Task Force. The Task Force was directed to: 

• Analyze current NNSA security organizational structure and recommend possible 
improvements that would improve operational focus, oversight, and culture 
sustainment. 

• Analyze current NNSA security oversight model and mechanisms to determine 
what seams exist and what structures could be Implemented to better ensure 
that the Issues are found and fixed before they become problems. 

The attached report documents the results of our analysis and our recommendations. It 
Is Important to note two key points: 

• The items documented In this report are remarkably similar to those 
documented in previous reports. NNSA has been resistant to the kind of 
organizational, cultural, and operational changes that would put security on a 
sustainably sound footing. 

« Although outside the charter of the Task Force, the role of leadership is crucial 
and must be taken Into account when considering the report findings. 

While the report highlights negative aspects of the NNSA security organization and 
assessment model, the Task Force found many great people on the NNSA security staffs. 
They are deaiiy dedicated, skilled, and hard>w>rk]ng and want to get the security 
mission done rij^t. Unfortunately, NNSA security personnel see themselves thwarted 
by lack of management support and feel obstructed by some of their peers. Their 
difficulties are compounded by the absence of a workforce strategy to recruit, retain. 
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and develop a cadre of talented, knowledgeable and experienced security professionals. 
Thus, it is all the more encouraging that these personnel, almost without exception, 
genuinely care about doing good ^rk. Their continuing strong desire to build a 
successful security organization Is a hopeful sign for the future. 


Attachment 
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1. INTRODUCTION 

1.1 Task Force Mission 

In the aftermath of the July 28, 2012 security incident at the National Nuclear Security 
Administration's (NNSA) Y-12 National Security Complex, the leadership of the NNSA and 
the Department of Energy (DOE) took action to address the security failures at Y-12. The 
initial information gathered revealed that issues at Y-12 were part of a larger pattern of 
security program management deficiencies.' These security issues prompted the NNSA 
Administrator to commission' a Task Force to analyze the current Federal NNSA security 
organizational structure and security oversight model and recommend possible 
improvements.' The NNSA Administrator directed the Task Force to: 

• Analyze current NNSA security organizational structure and recommend possible 
improvements that would improve operational focus, oversight, and culture 
sustainment. 

• Analyze current NNSA security oversight model and mechanisms to determine what 
seams exist and what structures could be implemented to better ensure that the issues 
are found and fixed before they become problems.* 

While other reviews were aimed at diagnosing the root causes of the Y-12 event, the NNSA 
Administrator's direction called for this Task Force to focus on the "path forward" within 
the Federal NNSA organization. Under the leadership of Brigadier General Sandra Finan, 
USAF, the Task Force consisting of NNSA, DOE, and military specialists conducted extensive 
document reviews and interviewed Federal managers and staff as well as a selection of 
contractor security managers and others across the NNSA security organization.' The Task 
Force collected and analyzed information, identified issues, and herein proposes solutions. 
Sections 2 and 3 of this Report present and discuss the findings under the headings of 
Organization and Assessment.® Section 4 presents recommendations based on the 
findings. Section 5 presents a proposed approach to an NNSA security organizational 
structure that addresses operational focus, oversight, and culture sustainment. Section 6 
presents a proposed approach to an NNSA security oversight mode! to better ensure that 
issues are found and addressed before they become problems. Section 7 presents the Task 
Force's closing. Supporting information is presented in the appendices. 


1) in the context of the Task Force Report the phrase "security program" encompasses security-related functions and activities 
across the NNSA in addition to budget line funding. 

2) NNSA Charter, Assessment of NNSA Federal Organization and Oversight of Security Operations, Thomas P. D'Agostino, NNSA 
Administrator, August 14, 2012. {Appendix A) 

3) The actual delivery of security and other services In NNSA is performed by contractors. The Federa! security organization 
manages the work of theMi contractors and assesses their performance. 

4) The terni "seam" in the Charter is understood to Include gaps, overlaps, and organizational friction pdnts. 

5) The Task Force team composition is provided In Appendix B. The data collection methodology is detailed in Appendix C. 

6) The term "oversight" in DOE and NNSA usage has both the usual, generic meaning and a specific reference to the 'Independent 
oversight" roie of the DOE Office of Health, Safety, and Security (HSS). The term "assessment" is more commonly used to describe 
such programs within NNSA. To avoid confusion, the Report therefore generally uses the term "assessment" to refer to NNSA- 
specific programs, and "oversight" to refer to the HSS prc^rams. 
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1.2 Major Results 

The Task Force noted significant deficiencies in security organization, oversight, and culture 
sustainment throughout the NNSA security organizations. In the NNSA security 
organizations, line management authority is ill-defined and claimed by multiple Federal 
organizations. The term "line management authority” as used in this Report, is the "ability 
to direct others to execute elements of the security mission." It does not refer to typical 
staff functions such as the development of requirements and promulgation of policy. On 
the one hand, the "Federal field organizations" exercise line management authority over 
the site security contractors via the contract management structure.’ On the other hand, 
the NA-70 asserts that It also has such authority. Absent clearly defined lines of authority, 
many individuals assert authority, while correspondingly few have been assigned 
responsibility. This lack of clear lines of authority contributes to a widespread practice of 
decision-making by consensus. When consensus fails, organizational elements can act 
independently or not at all, which undermines effective implementation of the security 
program. Conflicting interpretations of the NNSA Act itself add to the confusion.* 

The Task Force further noted a significant gap in the current NNSA security organizational 
structure. At the strategic level the Headquarters organization has been ineffective and 
has intervened in field tactical execution.’ The Federal field organizations have been 
ineffective in performing their tactical responsibilities for executing the security program 
and have intervened in strategic matters. Additionally, there is no clearly identified 
operationally-focused organization that bridges the gap between strategic and tactical 
responsibilities and addresses standardization, field execution, and multi-site analysis. 

The Task Force found a broken security performance assessment model. It also found that 
NA-70 came to rely overwhelmingly upon Federal staff simply reviewing contractor- 
provided data, rather than effectively assessing performance itself. At the same time the 
DOE Office of Health, Safety and Security (HSS), which is responsible for independent 
oversight, had been directed as part of governance reform, to reduce the frequency and 
rigor of its reviews of NNSA. Of particular concern is the observation that potentially 
critical management information is not being reported clearly to the appropriate decision 
makers. 

As concerning as these structural and assessment issues might be, the most striking result 
of this review falls in the area of culture sustainment. It quickly became evident that the 
Task Force findings closely resemble those presented in numerous prior reports such as the 


7 ) The term ‘Federal field organization," as used in this report, refers primarily to the NNSA site offices, but also includes the 
recently created Nuclear Production Office w^ich functions as a consolidated site office for the Y-12 and Pantex sites as they move 
toward a single consolidated contract structure. 

8) NATIONAL NUCLEAR SEOJRtTy ADMINISTRATION ACT (As Amended Through P.L 111-383, Enacted January 7. 2011] 

9) As referenced in this Report, the 'strategic" level develops long range planning and goals to ensure proper execution for achieving 
end results, the "operationaf level implements the o\«ra!l strategy by giving direction to tactical elemerrts and providing support to 
reach mission objertives, and the "tactical” level perfoims day-to-day c^erations and oversi^t to ensure that duties and tasks are 
being completed. 
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2tX)5 Mies Report and the 2004 Chiles Report.”* While NNSA has attempted to correct 
some identified issues over the years, it has not adequately emphasized effective security 
mission performance. In recent years, NNSA security leaders have chosen to emphasize 
security cost containment to the detriment of security program execution. The idea that 
the requirements for security performance effectiveness are subordinated to cost concerns 
has become a prevailing concept in the NNSA security community. This emphasis has 
become endemic throughout the NNSA security culture, so much that fundamental facility 
protection issues such as the protection of ongoing operatipns came to be regarded as too 
expensive and therefore "out of bounds" for analysis.” The NNSA security culture has 
focused on fiscal limitations over effective performance. This has resulted in an 
environment in which deficiencies are worked at the margins rather than management 
addressing core issues. 

These issues underscore the critical role of effective leaders. While outside the charter of 
this Task Force, it must be acknowledged that leadership plays the key role in mission 
accomplishment. The Task Force recognized that effective leadership may compensate for 
structural deficiencies within an organization; however, restructuring alone cannot 
overcome leadership shortcomings. The best assessment model is useless if leaders fail to 
effectively implement it. Additionally, the assessment model will not be effective unless 
leaders consistently demand comprehensive, unbiased information. NNSA must take 
ownership of its history of security failures. Leadership must take bold and enduring 
actions if this pattern is to be broken. 


10) See Appendix F, Sele(Aed Bibliography for the full citation of these reports and other related materials. 

11} For example, highly enriched uranium operations at ¥-12 were suspended for 18 days following the security breach. The Task 
Force found that continuity of operations was not a significant factor in the planning and execution of the security program. 
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2. ORGANIZATION 

2.1 INTRODUCTION 

The current NNSA security organizational structure is confusing in terms of the 
relationships between the NNSA Administrator, Office of Information Management 
(NA-IM), the newly established Office of the Associate Administrator for Infrastructure and 
Operations (NA-OO), Office of Defense Nuclear Security (NA-70) and the Federal field 
organizations. There is an intermingling of statutory, programmatic, line, and staff 
functions within the NNSA security organization. 

The primary NNSA Headquarters security organization is the Office of Defense Nuclear 
Security {NA-70), which reports directly to the NNSA Principal Deputy Administrator, The 
NA-70 Director is aiso the Chief of Defense Nuclear Security (CONS). The Chief of Defense 
Nuclear Security position is established in the NNSA Act and has a reporting line to both the 
NNSA Administrator and the Secretary of Energy. The authority to appoint the Chief of 
Defense Nuclear Security resides with the Secretary of Energy, and is exercised with input 
from the NNSA Administrator. The NA-7Q Director reports to the NNSA Principal Deputy 
Administrator, and as the Chief of Defense Nuclear Security has direct access to the 
Secretary of Energy-this creates two lines of communication. 

Separate from the formal mission and functions of NA-70, the Chief of Defense Nuclear 
Security position Is also designated by the Secretary of Energy and NNSA Administrator as 
the Cognizant Security Authority (CSA) for NNSA. This authority can be further delegated. 

Federal officials that are delegated CSA authority can commit security resources or direct 
the allocation of security personnel or approve security implementation plans and 
procedures in the accomplishment of specific work activities. 

NA-70 has four offices. Security Operations and Performance Assessment (NA-71), Field 
Support (NA-72), Nuclear Materials Integration (NA-73), and Personnel and Facility 
Clearances (NA-74). Additionally, NA-70 has a Resource Management staff (NA-70.1) and 
an Intelligence and Counterintelligence Liaison function (NA-70.2). See Figure 1. 

Federal field organizations are structured for execution of the NNSA security program in 
many different ways. Some security organizations report to the senior field manager, while 
others do not. Some organizations are singularly focused on the security mission while 
others are part of a more diverse portfolio that could include business operations, project 
management, etc. The diversity of organizational structures has the effect of working 
against the initiative to achieve NNSA-wide consistency, standardization of policy, training, 
and program implementation. This blurs roles, responsibilities, and line management 
authority. 

Line management authority runs from the NNSA Administrator through NA-00 to the 
Federal field organization managers and their security staffs, and finally to the contractor 
who executes the mission. CSA flows from the NNSA Administrator to the Chief of Defense 
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Nuclear Security directly to the Federal field organization leadership and currently may be 
further delegated. The Chief of Defense Nuclear Security exercises security line 
management authority to direct Federal security staff and extends this to the contractors. 
Thus, the Chief of Defense Nuclear Security and Federal field management concurrently 
exercise line management authority, causing conflict and confusion. While the C5A is a line 
management authority, it does not follow the same delegation path as other line 
management authorities, compounding this confusion. 

The Task Force noted a significant organiiational weakness that is due to a gap in the NNSA 
security structure. The Headquarters security function is basically strategic, providing 
policy, guidance, and requirements. The Federal field organization role is fundamentally 
tactical, executing the day-to-day security program. The NNSA lacks an operational level to 
communicate strategic policy and requirements as guidance that supports NNSA-wide 
standardization, to provide technical assistance to individual field organizations, and to 
perform other functions that are field-oriented and multi-site In character and application. 
This shortcoming contributes to Headquarters becoming involved In tactical-level line 
management deebions, and for tactical-level managers to assert a strategic role. 

Noticeably absent from the above discussion are the NNSA Program Offices. Until 
recently, the Federal field organizations reported to the Deputy Administrator for Defense 
Programs (NA-IO). This has changed so that they now report to the Associate 
Administrator for infrastructure and Operations (NA-00). Neither organization has any 
formal role in the development and implementation of the NNSA security program, 
although each "owns” the security staffs at the Federal field organizations, budgeting for 
their salaries and benefits and assuming responsibility for their professional development 
and training. 

HS5 also plays a role in the NNSA security program. In addition to beingthe office of 
primary interest for DOE Security Orders, It performs Independent oversight of NNSA 
Headquarters and field locations. HSS is also responsible for providing basic corporate 
security education and professional development through the National Training Center. 
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Figure 1 

Current NNSA Security Organizational Structure 
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2.2 Discussion 

The existing NNSA security organizational structure is convoluted and ineffective. The Task 
Force observed that lines of authority in virtually every organizational function are divided. 

The NNSA security function is not well organized or effectively staffed and the NA-70 policy 
development and implementation process is broken. While the Chief of Defense Nuclear 
Security is the Cognizant Security Authority (CSA), this responsibility has been unevenly 
delegated and is open to inconsistent interpretation. Security staffs are responsible to 
multiple lines of authority and for some functions may not be responsible to anyone. The 
most fundamental issues arise from the relationship between NA-70 and the Federal field 
organizations. NA-70 believes that it has line management authority over the security 
elements within the Federal field organizations. However, the managers of these field 
organizations have been formally assigned line management authority. The NNSA Act 
slates that the Chief of Defense Nuclear Security role includes "the development and 
implementation of security programs". The current interpretation of this provision has 
been a source of ambiguity due to the mixing of line and staff responsibilities in a single 
organization. 

Roles and responsibilities are either undefined or not followed. The Task Force identified 
numerous occasions across the NNSA security organizations where individuals are not 
allowed to perform assigned duties or assume roles and responsibilities nominally assigned 
to others. The confusion of roles and responsibilities is evident in NA-70, within field 
organizations, and between NA-70 and the field. For example, the approved mission and 
function statements for NA-71 and NA-72 have little apparent relationship to the way these 
offices operate and how they interact with each other or with the NA-70 "front office." 

Within field organizations, the Task Force noted a number of instances where management 
precludes staff from performing the assigned roles of their position and/or assigns 
personnel to unrelated duties. At times, NA-70 acts as a formal line management 
organization, and asserts responsibilities that are formally assigned to the Federal field 
security organizations. NA-70 personnel are frequently frustrated by site-level resistance 
to the programmatic direction they provide and Federal field security managers are often 
similarly frustrated when NA-70 uses its budget authority, its control over the policy 
process, and other activities to inject itself into what the sites regard as their line 
management decision-making process. 

There are no clear lines of authority. There are overlapping lines of authority and a mixing 
of staff and line functions. The CSA function flows from the NNSA Administrator through 
the Chief of Defense Nuclear Security to the Federal field organizations. Line management 
authority goes from the NNSA Administrator through the Associate Administrator for 
Infrastructure and Operations (NA- 00), to the field. However, NA-70 attempts to exert line 
management authority and provides programmatic guidance directly to the Federal field 
security managers. While Federal field organizations administer the contracts governing 
the artual performance of the security mission, NA-70 routinely interacts with the security 
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contractors. Furthermore, NA-70, not the line managers, is the primary executer of the 
NNSA security budget. 

The security policy process is broken. The Task Force identified that there is no clearly 
articulated or consistently implemented NNSA security policy process. A major concern is 
the supplanting of DOE Security Orders with generic and less restrictive NNSA policies 
(NAPs). This appears to be based on a desire to reduce funding demands through a 
reduction of requirements. Additionally, the Task Force noted a desire on the part of some 
NA-70 senior managers to maximize separation from DOE HSS policies and activities. 

Within NA-70, policy and guidance are issued through a variety of formal and Informal 
mechanisms with erratic distribution. The Task Force identified that some Federal field 
organizations are inconsistent in their acceptance and application of NA-70 issued policies. 
Finally, NA-70 policy and guidance tend to be vague resulting in widely differing 
interpretations by field personnel. 

The NNSA Federal security organization Is not effectively structured or staffed. While 
there are clearly strategic (Headquarters) and tactical (Federal field organizations and 
contractors) levels, there is little indication of an effective operational element with 
responsibility for security program functions such as site assistance and standardization of 
program execution. The Task Force also noted that the Federal field organizations 
structure their security functions substantially differently. This results in a lack of 
standardization of both organization and execution of the security program. At some sites 
there is weakening of the security function and reduced senior management attention. 
There are a number of personnel issues associated with the security professional staff, 
including the lack of a human capital development plan, no career path, and limited 
mobility. Additionally, the Task Force noted an overreliance on support service contractors 
who primarily assist the NA-70 organization.'^ 

2.3 Findings 

2.3.1 Roles and responsibilities are either undefined or not followed. 

2.3.1.1 Within NA-70 there is a iack of cieariy defined and understood functions 
and missions. Despite approved mission and function statements within 
NA-70, there is uncertainty, inconsistency, and conflict between the NA-70 
'front office", NA-71 and NA-72. The piacement of NA-73 in the 
organization seems an anomaly that can divert senior management 
attention from the core security mission. 


12) These support service contractors are distinct from security cof>tractor$ who perform program functions such as protective 
forces- 
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2.3.1.2 NA-70 has failed to implement a requirements-driven budget formulation 
process. There is no clear delineation of responsibilities within the NA-70 
organization between the requirements process and the budgeting 
process. There has been an overwhelming tendency, especially at 
Headquarters, for security requirements to be downwardly adjusted. The 
NA-70 leadership chose to lessen requirements rather than seek 
appropriate funding levels necessary for effective program execution. This 
has led to a wholly budget-oriented focus rather than a balanced approach 
in which requirements drive the process and senior management directs 
the balance between program execution and risk acceptance. 

2.3.1.3 The relationship between NA-70 and Federal field security staff is 
dysfunctional. The roles and responsibilities for Federal staff are not 
clearly defined, understood, or consistently applied. The distinction 
between line management responsibility and Headquarters staff 
responsibility Is blurred and negatively impacts the relationship between 
Headquarters and the field. This lack of clear roles and responsibilities has 
led to conflict between some Federal field security personnel and NA-70 
(and sometimes a three-cornered conflict involving contractor security 
staff). There is also a cultural issue between some Federal field 
organizations and NA-70 in which communication with NA-70 security 
subject matter experts (SMEs) is actively discouraged and impeded by 
Federal field management. Some Federal field organizations assert that 
they "do not work" for NA-70. There are disagreements over who has 
responsibility, authority and accountability. As a result. Federal security 
organizations act to "protect turf' and are biased against sharing 
information. This has reduced the effectiveness of the NNSA security 
program. 

2.3.2 No clear line of authority within the NNSA security organization. 

2.3.2.1 There is no clear line of authority. There is no documented or consistent 
implementation of security responsibility and authority. The formal line 
management authority for executing security programs in the field does 
not include NA-70, the Chief of Defense Nuclear Security. However, the 
Federal field security managers have an informal 'dashed line' relationship 
to NA-70. This relationship intermingles line and staff functions, which has 
adversely impacted the communications between the Contracting Officer 
and the security contractor. The confusion has contributed to a 
degradation of mission performance, a lack of standardization in program 
implementation, inconsistent performance assessment, and has diluted 
senior management awareness of security operations, issues and risks. 
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2.3.2.2 Delegation of CSA is ili-deflned and inconsistent. There is no dear policy 
guidance on what can be delegated or how the delegations are to be 
Implemented. NAP- 70.2, Physical Protection, has allowed for varied 
Interpretations of what can and cannot be delegated. There is no 
standardized process for the delegation of CSA from the Chief of Defense 
Nuclear Security to the Federal security managers. Further delegation of 
CSA to the security contractor is inconsistently exercised and in some cases 
inappropriate. As a result, the contractor is sometimes allowed to approve 
security plans and procedures without effective Federal oversight or 
approval. 

2.3.3 NNSA security policy process is broken. 

2.3.3.1 NA-70 has assumed responsibility for generating security policy without 

allocating adequate resources to ensure effective policy formulation. 

NNSA generated security NAPs as an alternative to following DOE security 
policy. NA-70 staffed its policy process by borrowing resources from other 
NNSA security functions, usually at the cost of disrupting the orderly 
performance of those other functions. The result has been that NNSA 
security policy formulation and issuance is incomplete, ad hoc, inconsistent 
with DOE security policy, and imperfectly communicated to the line 
organizations. 

2.3.3.2. NA-70 has not clearly defined the necessary security program 

performance baseline. There is no clearly established requirements-driven 
baseline to govern the implementation of the NNSA security program and 
against which the program is assessed. Rather, the NA-70 approach 
deliberately departed from key DOE Security Orders and established a less 
restrictive security policy framework through the NAPs without resolving 
the different performance measurement expectations between the two 
policies. The lack of clearly defined performance requirements results In 
inconsistent and incomplete security program implementation. 
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2.3.4 NSA Federal security function is not properly organized or staffed. 

2.3.4.1 There is no standard or consistent organizational structure for security 
functions at the Federal field organizations. The Federal field 
organizations carryout their security functions in different ways. While one 
site does not fit all, effective security organizations should have a set of 
core functions common across the security program. Currently, there is a 
lack of standardization and an uneven implementation of the Federal 
security program requirements. In some cases security functions are 
combined with other, non-security functions, taking management focus off 
of security progi'am execution. 

2.3.4.2 The NNSA security organization has no operational-level element. NA-70 
primarily focuses on the strategic level of security, while the Federal field 
organization focuses on the tactical level. This leaves a gap at the 
operational level; there is no effective capability to provide 
implementation guidance or standardization and no one above the tactical 
level is appropriately focused on field operations. Without this operational 
focus each Federal field organization and each contractor is allowed to 
develop its own procedures for organizing and conducting security. The 
result is a fragmented and inconsistent execution of the NNSA security 
mission. 

2.3.4.3 The NNSA security functions are not staffed effectively and there is no 
human capital strategic plan. While there is a technical qualification 
program for some security professionals, there is no formal strategy for the 
recruitment, retention, and appropriate progression of Federal security 
professionals. Current practice reFies heavily on Headquarters' use of a 
cadre of support service contractors, in lieu of developing Federal security 
professionals with multi-site and/or multi-security discipline experience. 
The result is that Federal security staff may have limited opportunity for 
professional growth and oftenfeel they are in a 'dead end' job. 

2.3.4.4 The NA-70 leadership overly relies upon support service contractors. The 

senior NA-70 leadership has relied excessively upon contractors to provide 
core expertise. For example, the Security Operations Division's on-site 
workforce is two-thirds support service contractors. The other divisions' 
on-site workforce consists of an average of about 5096 support service 
contractors. In addition, there is a very large number of other support 
service contractors used for field assistance activities. This overreliance on 
contractors, combined with the underutilization of the Federal work force, 
has contributed to the lack of an effective and sustained career path for 
Federal security professionals. Demoralization and feelings of 
disenfranchisement are evident in the Federal security workforce. 
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2.3.4.5 NA-70 has not developed a program to integrate both local and national 

intelligence into dally operations at each of the specific sites. There are 
no clear and effective organizational relationships with the Intelligence and 
Counterintelligence communities that provide consistent access at each 
organizational level to security threat and risk-relevant information. As a 
result, NA-70 and most Federal field organizations do not have effective 
intelligence support. 
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3. ASSESSMENT 

3.1 iNTRODUaiON 

The Task Force expended considerable effort attemptir^ to describe, understand and 
analyze the current assessment model and mechanisms. Currently, the NNSA security 
assessment model consists of three levels; 1) contractor self-assessments against policy, 
program and contractual requirements, 2) Federal field organization shadowing and 
evaluation of specific performance testing and program activities and also evaluation of the 
overall effectiveness of the contractor's self-assessment system , and 3) NA-70 evaluation 
of both the contractor's self-assessments and the effectiveness of the Federal field 
organizations' oversight activities. Additionally, periodic independent comprehensive 
security inspections of NNSA sites are performed by HSS. 

There are issues with the implementation of the assessment activities at each of these 
levels. Some portions of the assessment process are not fully documented, some portions 
are not always followed, and other assessment activities appearto be locally Improvised. 

To the extent that there Is a security program baseline, it is derived from DOE Security 
Orders and NNSA security NAPs. However, there are significant unresolved inconsistencies 
between DOE Security Orders, NNSA NAPs, and a variety of narrowly focused local criteria. 

The NNSA NAP approach in security has been less specific and less defined than the 
approach specified In DOE Security Orders. NAP-21, Transformation Governance and 
Oversight initiative, as interpreted by the NNSA security organizations, has enabled the 
contractors to determine how security programsareto be implemented and assessed. 

This extends to a belief that Federal oversight should be non-lntrusive. There are no clearly 
established comprehensive performance standards or measurement criteria for the 
security program. NA-70 has not clearly communicated program guidance and 
performance expectations regarding NAP implementation. There is insufficient and 
incomplete training in the assessment process. Finally^ constraints at both the field and 
NA-70 levels push Federal assessment activities firmly in the direction of mere paperworic 
reviews. 

The Task Force recognized there are some aspects of the current assessment process, 
which should be fundamental to any assessment process with a large portion of the 
concerns focus on assessment program execution rather than on assessment program 
design. Additionally, there are structural aspects of the program that are causes for 
concern. The Task Force observed an endemic culture that accepts the current aWication 
of effective Federal program assessment as a given. 

3.2 Discussion 

The failure to adequately assess security system performance and to clearly and 
unequivocally report deficiencies to the appropriate senior managers has been identified as 
a significant contributing cause to the Y-12 security incident The Task Force focused upon 
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the performance assessment process as implemented by Federal field and Headquarters 
organizations within NNSA. Although contractor self-assessments are the first-line 
elements in the security performance assessment process, these were outside the direct 
scope of the review. Strengthening the contractor self-assessment process Is an important 
objective, but cannot replace a rigorous Federal assessment process. 

NNSA does not have an adequate security performance assessment process or capability. 
The performance assessment capabilities of Federal security organizations within NNSA are 
virtually non-existent. Essentially all responsibility for performance assessment is 
delegated to the Federal field organizations. The current Federal field organizations are 
typically limited to "shadowing" contractor self-assessments and/or reviewing the reports 
these self-assessments generate. Moreover, there is a tendency on the part of some field 
Federal staff to adopt the role of defending "their" contractors rather than attempting to 
objectively assess contractor performance. At the Headquarters level, the NA-70 
performance assessment function has only three full-time Federal staff members. The Task 
Force noted that the current NA-70 assessment process is largely confined to the review of 
submitted paperwork. The result is that there is no NNSA Federal organization that is 
capable of performing effective security performance assessment. 

The "systems-based" assessment model as Implemented is Ineffective for security. 
Misinterpretation, and/or misapplication of the DOE Safety and Security Reform Plan, 
dated March 16, 2010, resulted in a weakened Federal security assessment program. In 
particular, this document stated: "Security Performance: Contractors are provided the 
flexibility to tailor and implement security programs in light of their situation and to 
develop corresponding risk- and performance- based protection strategies without 
excessive Federal oversight or ovcriy-prescriptive Departmental requirements." This 
guidance was further expanded upon and eventually articulated in NAP-21, Transformation 
Governance and Oversight Initiative}^ The belief arose that "eyes on, hands off" precluded 
Federal security staff from conducting performance-based assessments of contractors. As 
a result, most Federal assessment is based on paperwork generated by the contractor. This 
paper-based system of assessment, without sufficient performance verification, is 
inadequate for effective evaluation of security operations. 

NNSA has no clear and consistent performance baseline for security program 
Implementation. A performance baseline, set forth in detailed standards and criteria, is 
the keystone of an effective security program. Precisely articulated standards and criteria 
further provide an objective foundation for performance assessment. Currently, NNSA 
does not have the standards or criteria necessary to effectively measure security program 
performance. The absence of such standards and criteria diminishes the ability to identify 
potentially significant performance deficiencies. The Task Force noted that the lack of 


13) NAP 21, Chapter 8 states, “Line oversight activities are largely systems-based in functional areas of lower risk and where the 
contractor has demonstrated good perfoimance..-" Security pr^rams at sites with special nuclear material, critical infrast ructunj, 
and/or other high value assets and activities are by deflnrtion of higher ri^ and therefore NAP 21 systems-based approach should 
not be applicable. 
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standards and criteria has been coupled with the widespread notion that contractors must 
only be told "what" the mission is, not "how" the mission is to be accomplished. While this 
approach may be appropriate in other areas, it is ineffective as applied to security 
programs. Therefore, security tasks are not necessarily performed in a manner consistent 
with NNSA security requirements. 

The current assessment process is biased against criticism. The Task Force noted a 
distinct bias against finding and stating performance criticisms. H55 was asked to reduce 
the rigor and frequency of NNSA oversight. The NNSA Federal assessment relies heavily on 
contractor seif-assessment. While an important tool, contractor self-assessments tend to 
be insufficiently objective. The primary Federal assessment role is performed by field staff. 
Long-term geographic proximity to site contractors can compromise the objectivity of 
these Federal assessors. Moreover, the intermingling of management and assessment 
roles within Federal field organizations can also contribute to less objective assessment. 

The NA 70 Headquarters performance assessment process, being paper-based, cannot 
validate the information submitted. Information provided to the Task Force suggests that 
in some instances Information considered to be unfavorable is being "watered down" or 
obscured. Furthermore, information was presented that indicate differing opinions are 
being suppressed by some senior managers in the field and at Headquarters. As a result, 
NNSA senior leadership may not receive ail information needed to make quality decisions. 

3.3 Findings 

3.3.1 NNSA does not have an adequate security performance assessment capability. 

3.3.1.1 NA-70 does not have an effective security assessment capability. The 
current paper-based assessment process is heavily dependent on field office 
and contractor reporting and does not include independent observation or 
validation of site security implementation. As a result, NA-70 Is unable to 
validate the Implementation of security policies or contractor performance 
of assigned missions. 

3.3.1.2 NNSA Federal field organizations do not have consistently effective 
security assessment processes. The current process of reviewing 
contractor self-assessments and operational awareness activities does not 
provide adequate insight into contractor performance. In some cases 
Federal security staff has been limited to reviewing only contractor- 
provided paperwork. Consequently, Federal field organizations have 
become overly reliant on contractor-generated data in assessing contractor 
performance. Objective assessment of contractor performance can be 
compromised by day-to-day interactions. As a result, Federal field 
organizations cannot a Iways validate contractor performance. 
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3.3.1.3 NA-70 has virtually abdicated all responsibility for security assessment to 
the fieid organizations. NA-70 leadership has provided little unifying 
direction to Federal field security staff. This has allowed forwidely varied 
implementation of security assessment requirements. As a result, 
consistently effective security assessments are lacking, cross-site trends are 
not appropriately identified, and NNSA leadership is deprived of an 
appropriate program-wide understanding of the security program 
implementation. 

3.3.1.4 NA-70 has moved away from performance-based Federal security 
assessment. The Federal security staff has only limited capability to do on- 
site assessments and has increased its reliance on contractor-provided data. 

NA-70 receives extensive paperwork, which Is prepared by the contractors 
and transmitted by the Federal field organizations with their input. The 
excessive quantity of papemrork and questionable quality of the data, 
coupled with the Fleadquarters' inability to assess actual performance, 
precludes validating the information in the documents. This reliance on a 
paper-based approach has taken Federal security managers out of an active 
role in assessing actual security performance. 

3.3.2 The systems-based assessment model as implemented is ineffective for 
security. 

3.3.Z.1 The current Implementation of systems-based assessments fails to 
uncover problems. The current systems-based approach unduly 
emphasizes the contraaor assurance process rather than actual 
performance results. This has largely replaced previous performance-based 
(transactional) evaluation. The Federal staff at Headquarters does not 
conduct any performance testing. While some Federal field organizations 
conduct performance testing on a limited basis, the current assessment 
approach discourages active Federal performance testing. As a whole, 
performance testing in the field has been of questionable effectiveness. 

Therefore, NNSA does not have an effective Federal capability to Identify 
issues, and may be unaware of significant problems prior to their 
realization. 
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3.3.3 There is no clear and consistent performance baseline for program 
implementation. 

3.3.3.1 NA-70 wrote and Impiemented policy document, which were less 
restrictive than DOE policy and were subject to excessive interpretation. 

NA-70 produced NAPs, and other poiicy direction, that reduced security 
requirements and did not provide implementation guidance to clarify or 
build upon DOE security requirements. While the NAPs have altewed sites 
the freedom to tailor security programs to their specific needs, these NAPs 
also led to an absence of standardization and/or consistent implementation 
of security requirements. This lack of a standard baseline has the potential 
to place assets at risk, it also makes implementation of an integrated NNSA 
security program very difficult. 

3.3.3.2 NA-TO did not establish standards and criteria that define expectations for 
security operations within NNSA. There is no comprehensive definition of 
security performance requirements. Consequently, there are no standards 
and criteria against which to measure the performance of NNSA security 
program execution at individual field locations orforthe overall security 
program. The employment of such standards and criteria increases the 
ability to identify potentially significant performance deficiencies. 

3.3.4 Current assessment process is biased against criticism. 

3.3.4.1 Contractor self-assessments are insufficiently critical. The Task Force 

noted an unwillingness to report deficiencies through the contractor self- 
assessment process. The assessment process as currently applied avoids 
probing areas of potential weakness. The current NNSA contratting model 
insufficiently addresses critical self-assessment as an effective part of fee 
determination. 

3.3.4.Z Federal field assessments are Insufficiently critical. Long-term geographic 
proximity to site contractors can compromise the objectivity of the Federal 
assessors. Similarly, Federal field level involvement in local operational 
decisions can also limit objectivity. At some field locations management 
impedes the ability of Federal staff to effectively or thoroughly review 
contractor performance. 

3.3.4.3 NA-70 does not have mechanisms to correct biases in assessment 
information. Information considered to be unfavorable is being "watered 
down" or obscured at NA-70 and lower levels. As a result, NNSA senior 
leadership may not be getting the information necessary for quality 
decision-making. 
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RECOMMENDATIONS 

The following recommendations address findings noted in this Report. The Task Force 
identifies the first three recommendations as overarching, and believes these should 
receive priority attention. Specific organizational and assessment recommendations then 
follow. 

4.1 Overarching 

4.1.1 Build and execute an NNSA Security Road Map that consolidates 
recommendations, articulates a clear wsion of where the security program is 
going, and charts a path forward. 

4.1.1.1 Evaluate this Report, and other security reports, in building a sustainable 
path to success. Document the path In a roadmap that is signed by the 
NNSA Administrator and follow up with action plans that have clear 
ownership, and status updates. Make the solutions enduring so that they 
are not again written up in the next report. 

4.1.2 Restate and stress the role of security within NNSA to emphasize a stronger 
security focus and culture that emhi^ces security as Int^ral to the overall 
mission. 

4.1. 2.1 Leadership must emphasize the Importance of the security mission In 
strategic plans, mission statements, policy documents, and other 
expressions of management intent. Security must be clearly integrated with 
other mission elements and appropriately recc^nizcd as essential to overall 
NNSA mission success. 

4.1.3 NA^TO senior leaders must focus on die primary responsibility of developing 
an effective security program for the NNSA. 

4.1.3.1 NA-70 needs to concentrate on its primary mission of producing a current 
and comprehensive NNSA security program. The security program scope 
must reflect the balance between requirements and fiscal realities. Ensure 
that budget constraints do not inappropriately influence the establishment 
of program requirements. 

4.1.3. 2 An effective security program for the NNSA must not only address the 
protection of special nuclear material and classified matter, but must also 
address other considerations such as continuity of operations and a broader 
spectrum of threats. NA-70 must clearly define the requirements that will 
serve as a basis for risk acceptance decisions by line management. 
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4.2 Organization 

4.2.1 Clearly define and document the roles and responsibilities across NNSA 
security functions. 

4.2.1.1 Each organization needs to have clearly defined responsibilities. With each 
of these responsibilities the appropriate authority must be accorded. With 
responsibility and authority in alignment, individual and organizational 
accountability is established. 

4.2.1.2 Propose a clarification to the NNSAActthat more effectively addresses clear 
roles and responsibilities for the Chief of Defense Nuclear Security and the 
security line management responsible for executing the NNSA security 
program. 

4.2.2 Establish a clear Security line of authority. 

4. 2.2.1 Eliminate the bifurcation of the security line of authority for implementing 
security programs. The Chief of Defense Nuclear Security should develop 
appropriate policy guidance, but allow the CSA to flow from the NNSA 
Administrator through the NA-00 function to the Federal field organization 
managers. Create a clear distinction between line and staff functions. 

4.2.3 Retain the CSA authority at the Federal level. 

4. 2.3.1 Clarify CSA delegation of authority and its limitation, so that it cannot be re- 
delegated to contractors. 

4.2.4 Create an operational-level security organization that is responsible for the 
Implementation and standardization of security operations in the Reid. 

4.2.4.1 The operational-level organization should focus on standardizing security 
operations, ensuring that the security program is effectively executed, 
addressing NNSA-wide trends and issues, and ensuring that the 
requirements, budget and policy guidance appropriately meet the security 
needs of the field elements. 

4.2.5 Establish an assessment capability that evaluates implementation of security 
programs across NNSA. 

4.2. 5.1 In order to ensure the security program is appropriately impiemenled 
across NNSA, this capability must include the ability to assess the 
performance of the Federal field security organization as well as that of the 
contractor. 
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4.2.E Establish an appropriate Headquarters-level security policy capability. 

4.2.6.1 Policy development and implementation is a Headquarters core function 
that requires a dedicated professional policy staff to execute. Whether 
writing stand-alone policy or articulating implementation instructions for 
higher level policy, this function is essential for security program execution. 

4.2.7 Ensure that NA-70 security personnel have the appropriate level of security 
background, experience, and skill to properly carry out the NNSA security 
mission. 

4.2.7.1 NNSA needs the right security professionals in the right places. Individual 
leaders and collectively the entire staff must possess an appropriate skill 
and experience base to provide effective security program execution. With 
the right team in place, Federal security leaders and staff can set a path to 
success. 

4.2.8 Develop and execute a comprehensive human capital management program 
for Federal security professionals. 

4.2.8.1 NA-70 leadership must take responsibility to create a comprehensive 
personnel management plan that develops current security professionals, 
prepares them for positions of broader scope or greater responsibility and 
recruits, and retains security talent needed to sustain the Federal security 
capability. 

4.2.9 Reduce reliance on support service contractor personnel. 

4.2.9.1 Support service contractors should be used to provide discrete products and 
services as defined in the statements of work. They should not be used as 
an alternative for appropriately skilled and experienced Federal staff. 

4.2.10 Eliminate the conflict between DOE Security Orders and NNSA NAPs. 

4.2.10.1 NNSA should use the DOE Security Orders. DOE has a specialized security 
policy function that produces its orders. Rather than attempt to duplicate 
this function, use the orders for directiors and the NAP process to provide 
guidance and clarify information in the orders as appropriate, but not 
reduce requirements. 

4.2.11 Implement a requirements-driven security budget formulation process. 

4.2.11.1 Develop a structured planning, programming, budgeting, and execution 
process that ensure requirements are adequately stated and risks 
appropriately accepted. 
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4.3 Assessment 

4.3.1 Implement a comprehensive, multi-tiered, performance-based security 
assessment process. 

43.1.1 Implement an objective system in which performance Information is 
identified, documented, and communicated, as appropriate. 

4.3. 1.2 Establish an effective Federal performance testing element in the security 
program assessment process. 

4.3. 1.3 The assessment program should include a comprehensive look at all 
security topical areas on a regular basis. 

4.3.2 Establish clear security performance expectations (standards and criteria) and 
performance measures. 

4.3.2. 1 Develop and issue specific standards against which security operations are 
to perform and the criteria by which they will be evaluated. Consider 
inclusion of periodic and end of year performance evaluation 
requirements, fee strategy, and fee recommendations for security 
contractors. 

4.3 2.2 Revisit governance reform as it applies to the security program. Ensure 

that appropriately stringent standards and criteria for performance are 
articulated in policy and program direction. 

4.3.3 Revalidate and update the security performance requirements to ensure dl 
levels of the threat spectrum are addressed. 

4.3.3. 1 Greater consideration of lower-level and non-traditlonal threats such as 
active shooters and protesters must be appropriately incorporated into 
performance requirements. 

4.3.4 Create a culture of critical self-assessment and candid communication. 

4.3.4.1 Instill a commitment to effective self-assessment throughout the security 
program. Encourage presentation of areas of concern before they become 
problems. 

4.3.4 2 Create an environment in which all personnel are empowered and 

expected to appropriately communicate information in a clear, concise and 
accurate manner. 
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5. PROPOSED ORGANIZATIONAL STRUCTURE 

The proposed organizational structure, Figure 2 , separates the line function for executing the 
security mission from the Headquarters staff function. It establishes an operational-level 
organization that focuses on security implementation and standardization. Distinct rotes and 
responsibilities are associated with tactical, operational, and strategic-level security functions. 

Tactical execution of contract administration occurs at the Federal field organizations. 

Operational implementatiwi and standardization of operations across the security program 
occurs at the NA-00 level. Strategic-level policy guidance, requirements determination, and 
performance assessment occur in NA-70. 

In order to clarify the line of authority, the CSA flows from the NNSA Administrator, through 
CDNS to the head of the NA-(X), to the Federal field managers, and finally to the designated C3A 
at field sites, with no re-detegations authorized to non*Federal individuals. This authority 
follows the same path as the line authority from NA-00 downward. The asserted security line 
management tie between the Chief of Defense Nuclear Security and the security managers in 
the field is also terminated, in order to ensure a single, clear line of authority. 

In terms of clarifying line and staff functions, the current NA-70 organization Is restructured so 
that it serves solely as a staff organization at the strategic level. The four security offices under 
the current structure will be realigned into divisions with one additional division being stood up. 

The five divisions are Performance Assessment, Strategic Requirements (i.e., iwlicy 
development, planning and requirements, and trainir^ and career development). Nuclear 
Materials Integration, Personnel and Facility Clearances, and Business operations (i.e.. Resource 
Management, Headquarters security operations, classification and controlled information, and 
human capital). 

The Performance Assessment Division is a new function responsible for assessment of 
contractor and Federal field organization performance, including no-notice and/or short notice 
assessments. This division will also evaluate training effectiveness, policy implementation, and 
vulnerability assessments. This Is the entity that the Chief of Defense Nuclear Security would 
use to verify that security programs are properly implemented. 

The Strategic Requirements Division is responsible for security requirement determination and 
the NNSA security policy process (whether that is to write new policy or interpret and amplify 
existing DOE policies). This division will also be responsible for establishing training 
requirements and developing standards and criteria for security programs. A new function of 
training policy and career development planning is being stood up to support Federal security 
professional development. 

The Business Operations Division retains the existii% NA-70 functions of Headquarters security 
operations administration and classified and controlled Information. The division will be 


I4j The divisions of Personnel and Fatility Clearances and Nuclear Materials integration will not be addressed in this model as it does 
not af^ct the execution of the Headquarters wcuiity program twiction. However, an evaluatiort should be conducted to determine 
if a ix»ssibfe transfer of the Office of Nuclear Materials Integration i$ warranted. 
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responsible for implementation of certain activities within the NNSA security program, including 
the protection and control of classified Informatton, and the physical security for NNSA 
Headquarters facilities and other security programs. Additionally, this division will manage the 
NA-70 program direction budget, establish internal controls, design and implement office 
protocols, and oversee records management. 

A new security operations organizational level will be stood up within the NA-OO structure. The 
responsibilities of this office are to ensure that the policies and guidance provided by the NA-70 
staff are executed In the field. It will also ensure standardization of security procedures across 
the field locations as well as provide field assistance, and a conduit for field concerns to be 
surfaced to the NA-70 staff. It will execute the NA-70 scope and security training requirements. 

An expanded inteiligence/counterintelligence liaison is intended to ensure that Federal security 
managers get needed information and have appropriate ties to law enforcement and 
intelligence-related agencies. 

At the tacticallevel In the field, the multiple linesof authority are eliminated and dlreaionwlil 
come from a single line of authority. Ail authorities will run through the Federal field 
organization manager to the appropriate security manager. The Federal field organization scope 
of duties will include primary contract administrative functions—including reviews of contractor 
reports, analysis, security plans, and other required documentation; partnering with the 
executing contractor; remaining knowledgeable and up-todate on the content, operations, and 
effectiveness of the contractor's security Implementation; alerting management of all concerns 
related to contractor execution of the security mlsston. Federal field security organizations will 
fulfill their contract management role. 

This organizational stn;cture will define and clarify roles and responsibilities and facilitate a 
strong mission focus, it divides resourcing from requirements determination In order to ensure 
that requirements are appropriately stated, weighed against budget resources and decisions 
made on accepting risks at the appropriate level. It provides a single line of authority to those 
operating In the field and maintains an appropriate span of control. 
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Proposed NNSA Security Organizational Structure 
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6. PROPOSED ASSESSMENT MODEL 

The Task Force proposes a new approach to ensuring an effective security performance 
assessment system, one designed to address deficiencies in the current mode!. While retaining 
the three-tiered concept, it differs from the current model in several structural details and in the 
performance expectations established for each tier and for the system as a whole. The Task 
Force proposal strengthens the role of Federal security assessment within NNSA without 
diminishing the legitimate need for contractors to maintain their own self-assessment 
capabilities. 

The contractor self-assessment process continues as a first tier in the overall assessment 
process. The primary audience for the contractor self-assessments should be the contractor 
security manager themselves, but the self-assessments should follow a consistent, program- 
wide format, and be made available for review at all higher levels of management. Contractors 
should be required to identify, report, and resolve security issues-sanctions should come when 
a higher level assessment uncovei^ problems that the contractor self-assessments fail to identify 
or property address. Even when an Issue is readily resolved and corrective actions are 
immediate, a finding should be issued and the corrective action recorded. Failure to do so 
inevitably hides potential negative trends. Contractor self-assessments should Involve active 
performance testing rather than simply relying on work observation and document review- 
effective security performance can only be evaluated through testing. 

The fundamental purpose of Federal security performance assessment is to ensure that 
requirements are properly implemented. Therefore, the primary Federal assessment 
organization should ultimately report to the Chief of Defense Nuclear Security, who Is 
responsible for requirements. This provides independence not only from the contractors, but 
also from the tactical-level Federal field staff whose necessary day-to-day interaction with 
contractor managers and staff risks loss of objecth/itv. This enables the Chief of Defense Nuclear 
Security to better ensure effective implementation of NNSA security programs. Additionally, it 
provides feedback on performance to the operationai and tactical levels. 

These Federal security assessments should include performance testing of all critical elements. 

The assessors should Issue clear findings, which are to be tracked and closed in a program-wide 
corrective action management system. Federal assessors should also look closely at the 
contractor self-assessment process; "failures to Identify" by the contractor self-assessment 
element should automatically rise to the level of significant findings.'^ 

The final tier of the assessment model should explicitly rely upon the services of an Independent 
security oversight function, currently provided by HSS. NNSA should arrange for a regular 
process of comprehensive inspections. The oversight function should be encouraged to issue 
strong findings for matters of potential concern to the NNSA Administrator and the Secretary of 


15) Thfe mode! does not preclude operattorai and tactical level Federal managers from actively assessing contractor performance as 
part of their line management reponsibilities. 

OFFICIAL USE ONLY 
PRE-DECISIONAL DELIBERATIVE 



OFFICIAL USE ONLY - PRE-DECISIONAL DELIBERATIVE 


Energy, and should routinely evaluate the performance of contractor self-assessments and the 
Federal assessment program. 

This performance assessment model assumes a common requirements base that is employed at 
ail levels and across the NN5A security program. While some allowance may be made for site- 
speci^c issues, the fundamental elements of this requirements base should be an approf^iatefy 
integrated system of DOE policies, NNSA implementation directives, and field operational 
guidance. The requirements base should be reflected in approved documents such as site 
Safeguards and Security Plans. Specific performance requirements should be articulated in 
detailed performance standards and criteria supported by a commonly understood and utilized 
performance testing process. 
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7. CLOSING 

Over the years, there has been tension between implementation of security and conduct of 
operations. Whenever there have been signi^cant incidents of security concern, there have 
been corresponding swings of the pendulum towards a more rigorous security program. 
Security prc^ram emphasis has increased after espionage cases, internal security lapses, and 
external events such as the September 11, 2001 attacks. However, over time, the general trend 
has been for lower management levels to accept more risk in order to reduce the perceived 
burden and cost of the security mission. Furthermore, the trend has been to remove security 
from an Integral mission role, adversely affecting the NNSA security program. The events at Y- 
12 illustrate how far the pendulum has swung In the wrong direction. 

N 

The Secretary of Energy characterized the V-12 events as "unacceptable" and clearly stated that 
security is the highest organizational priority. The NNSA Administrator has been equally 
emphatic in numerous public statements since the incident. The evidence from Y-12 and from 
prior security incidents points to a culture of compromises. Moving forward, NNSA must 
establish and sustain an effective security program. NNSA must address the significant flaws in 
the current organizational structure for security and the associated assessment model. NNSA 
must dearly and consistently emphasize the importance of security. Ensuring that the right 
leadership is in the right position is absolutely critical to success. The daunting prospect-and 
the one that will require the consistent emphasis of current and future Secretaries of Energy 
and Administrators of the NN$A~-will be to instill a culture that embraces security as a 
fundamental and essential element of the NNSA mission. If NNSA fails in this, then senior 
leaders will again find themselves answering to the American people for the failures of security. 
Sooner or later, the perpetrator will not be peacefully-minded. 
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CHARTER 


ASSESSMENT OF NNSA FEDERAL ORGAN^TtON AND OVERSIGHT OF SECURITY OPERATIONS 

1. Authorization 

Tills Charter autiltorhces and directs Brigadier General Sandra FInan, United States Air Foire, Prfriclpal 
Assistant Deputy Administrator for Military Application, National Nuclear Security Administration 
(NNSA), to conduct an Independent critical assessment of NNSA federal organization arnf oversight of 
security operations. 

2. Background 

Three Indivldirals trespassed and defaced a building at the NNSA’$Y>12 National Security Complex early 
on Jidy 2S, 2012. Asa result, NNSA Is looking at aH aspects of what occurred to determine both the root 
cause($) of the Incident and any contributing foctors. This charter is focused on the path forward within 
the federal NNSA organization. 

3. Purpc^e 

The focus will be mi the fdiiowirvg two areas: 

• Analyze current NNSA security organizatlonai structure and recommend possIMe Improvemenls 
that would facilitate Improved operational focus, oversight, and culture sustainment. 

• Analyze c<ATent NNSA security oversight model and mechanisms to determine what seams exist 
and what structures could be Implemented to better ensure that issues are found and fixed 
before they become problems. 

Additionaliy, If other areas requiring further evaluation are noted, the charter may be amended to 
provide additional assessment. 

4. Deiivwables 

No later than 90 days from die date of this charter, deliver to the NNSA Admlnisdator a report and 
bHeflng descnliing the analysis, findings, and recommendations. Within 45 days deliver an update with 
interim flndir^s. 

5. Membership 

Membership will focus on individuals with a high degree of independence, expertise, and pragmatism 
and will be supported by NNSA. For NNSA team members, this is to be a full time detail. Team 
members from outside NNSA may be used to the maximum eident allowed by their host organizations. 



Thomas P. D'Agostino, Administrator Date 
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Appendix B 

Task Force Team Composition 

❖ Brigadier General Sandra Finan, USAF* 

❖ Mr. Roger Lewis, NNSA 

❖ Dr. James McGee, DOE 

❖ Lieutenant Colonel Rasheem Wright, USAF* 

❖ Major David Coy, USA* 

❖ Major Daniel Voorhies, USAF* 


Security Liaison 
Mr. Norbert Marcelle, NNSA 

Technical Editor 
Ms. Kimberly Hayes, Contractor 


‘Currently assigned to NNSA Military Element 
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Appendix C 

Task Force Methodology 


The Task Force used the following methodology in accomplishing its assignment: 

1. Assembled a small group with appropriate expertise that could participate on a fully 
dedicated basis for the planned period of the review. This group included Individuals 
knowledgeable and experienced in organizational analysis; security program 
management; security operations; performance management and performance 
assessment; NNSA Federal field organizations; government-owned, contractor-operated 
facilities; contractor performance management; M&O contracts; inspections and 
surveys; and human capital management and training. 

2. Obtained a thorough understanding of the July 28, 2012, Y-12 security breach, initial 
assessments and succeeding actions. This understanding was obtained through review 
of draft and final reports, security video footage, briefings; and discussions with 
Individuals, who participated in subsequent documentation and evaluation of what 
occurred. The Task Force focus was not on the incursion's root cause analysis or 
appropriate responses, but this baseline understanding was considered necessary and 
informative in addressing the task of analyzing the NNSA security organizational 
structure and the current security oversight model and mechanisms. 

3. Reviewed a significant number of past reports, most notably the security assessments 
commonly referred to as the Chiles and Mies Reports; as well as NA-70 documents. 
Federal field organization documents; HSS, IG, and GAO Reports, and previously-used 
Standards and Criteria for evaluating DOE security program effectiveness. A selected 
bibliography is presented in Appendix F. 

4. Reviewed written responses to a set of questions, which were answered by selected 
Headquarters and field organizations. 

5. Conducted approximately three dozen interviews with senior Federal security managers 
and senior security staff (in Washington and from across the Federal field organizations) 
and senior contractor security representatives. This information was supplemented by 
discussions (not formal interviews) with others from both management and practitioner 
levels that the Task Force felt could be of assistance. 

6. The Task Force members carefully analyzed, consistent with the terms of its charter, the 
information that was derived and developed. Key observations were discussed, which 
drove the development of findings and recommendations. After the basic conclusions 
and implications were formulated, the Task Force drafted this Report and reviewed the 
conclusions. 

7. As a final quality step, before formal presentation of results to the NNSA Administrator, 
the "final draft” Report was further reviewed by a "Red Team" composed of 
experienced and qualified independent experts. The Report was finalized giving due 
consideration to the inputs from the Red Team. 
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Appendix D 

Alternative Organizational Structures 

The Task Force considered two additional organizational structures. While not recommended 
by the Task Force, the basic structural concepts are presented below. 


Alternative A 

Centralization of the NNSA Security Function within NA-70 

This structure would achieve a unified security line of authority by realigning the security 
organizations at each NNSA Federal field organization within Defense Nuclear Security (NA-70). 
At present, most senior security managers report directly to the Federal field organization 
manager, who provides site security guidance and direction. Currently, the Chief of Defense 
Nuclear Security has a dotted line to the Federal field security managers with one Specific 
Performance Objective into their Performance Evaluation Plan. These relationships would be 
fundamentally changed if the senior security managers are integrated into the NA-70 
organization. The intent of this centralization option is to improve communications among 
Headquarters, Federal field organizations, and contractors. It could also enable NNSA to 
address security issues and concerns from a program-wide perspective. 
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Alternative A 


Centralization of the NNSA Security Function within N A-70 



Cyl»fSec'jrityPf(5gfamALi!h^ty 
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Alternative B 

Centralization of the NNSA Security Function within NA-00 

This structure would achieve a unified security line of authority by realigning the Office of 
Defense Nuclear Security directly into the Associate Administrator for Infrastructure and 
Operations (NA-00) organization. The statutory responsibility for the designation of the Chief 
Defense Nuclear Security and provision for direct access to the NNSA Administrator and the 
Secretary of Energy could be maintained via a separate direct communication channel. 

Additionally, the NA-00 would need to establish an internal organizational element focused on 
operational aspects of the NNSA security program. The security professionals within the Federal 
field organizations would have formally described relationships with both the operational 
element and the Office of Defense Nuclear Security while ensuring that there remains an 
effective communication and organizational relationship with the Federal field organizations. 

Current organizational relationships, including the placement of the security function in the 
NNSA organization, would be fundamentally changed if the Chief of Defense Nuclear 
Securlty/NA-70 is integrated into the NA-00 organization. The intent of this centralization 
option is to improve communications among Headquarters, Federal field organizations, and 
contractors. It could also enable NNSA to address security issues and concerns from a program- 
wide perspective. 
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Alternative B 

Centralization of the NNSA Security Function within NA-00 



”™— aaffAuthorily 


^ CDNS^jiontv 
■ CybwSecuntyf^ogiamAitionty 
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Appendix E 

Other Observations 

In the course of its activities, the Task Force identified a variety of items that, while not rising to 

the level of findings in terms of the Task Force charter, were deemed worthy of Inclusion in the 

permanent record of this review. 

1. Peer reviews are not used to help ensure effective security Implementation. The peer 
review process does not appear to be understood within the security organizations. 

Virtually all sites believe that an HSS assessment or an NNSA Headquarters visit constitutes 
adequate peer review of their operations. As a result, little data Is shared between sites and 
the practice of evaluating security eight separate ways, without regard for how other sites 
operate, is perpetuated. Recommend that an effective peer review process be 
implemented. 

2. Cyber Security responsibility as set forth in the NNSA Act is invested in the Chief of Defense 
Nuclear Security. Cyber Security has been delegated to NA-IM. This delegation assigns 
responsibility without sufficiently addressing authority and accountability. This is further 
complicated in that the Federal field organizations' Cyber Security function is not always 
integrated into the overall security program. Recommend the basis for this bifurcation be 
revisited. 

3. A number of issues have been identified with contractor self-assessment. Critical self- 
assessment is not routinely accomplished and NNSA requirements are not always 
sufficiently tested or otherwise assessed. The current fee process as applied to security Is 
biased toward documenting success as opposed to reality. The NNSA Acquisition Executive 
should evaluate options for addressing these Issues in the basic contract and in the 
contractor performance evaluation plan. 

4. There does not appear to be a correlation between issues identified and status listed in 
some Safeguards and Security Management Systems Assurance Program reports. In one 
instance, a flag was identified as "Significant Weakness" or "Unsatisfactory" performance; 
however, the area was identified as "Green" or "Satisfactory." Additionally, the description 
of the flagged item stated that "The project is and has been out of schedule". The area, 
however, was rated as "Green" for the first three-quarters of the year. Recommend a 
review of how items are reported in order to ensure the reports appropriately highlight 
performance. 

5. The practice of using "Areas for Improvement" rather than "Findings" in assessment reports 
has caused follow-up actions to be weakened. "Findings" generally require a response with 
tracked follow-up activity. This process helps ensure that issues are appropriately 
corrected. "Areas for Improvement" do not require a response or follow-up. This lack of 
emphasis has resulted in a less stringent process to fix issues found in the assessment 
process and has permeated into the assessment model used by NNSA Federal staff. 
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6. Safeguards and Security Management Systems Assurance Program Reports are not 
standardized in format and content. The varied formats made analysis of the data and trend 
determination extremely difficult. Recommend NA-70 require all sites to submit reports in a 
standardized format. 

7. Evaluate the role of the National Training Center (NTC) in providing professional training to 
the NNSA staff as part of Implementing the overall recommendation for establishing an 
NNSA Federal security career path. 

8. Consider moving the Office of Nuclear Material Integration out of NA-70. This function is 
not aligned well with the security mission. 
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Department of Energy 

Wastjington, DC 20585 

July 9,20)3 


llic Honorable Tim Murpli) 

Chaimian 

Subcommittee on Oversight and Investigations 
Committee on Energy and Conintcrce 
li. S. House of Rcpresenttitives 
Washington, DC 2{)515 


Dear Mr. Chainnan: 


On March 13. 2013, Deputy Secretar>’ Daniel B. Poncman. te.stificd regarding 
"DOE Management and Oversight ofits Nuclear Weapons Complex: Lessons olThe 
Y-12 Security Failure.” 

Enclosed arc the answers to six tiuesiions ilitit were submitted by Reprcscniative,s 
Michael C. Burgess. Ben Ray l.ujan and you to complete the hearing record. 

if we can be of further assistance, please have yoiir .staff contact dur 
Congressional Hearing Coordinator. Lillian Owen, at (202) 586-2031. 


Sincerely, 




/7 / 

/ //? ^ ■- Lf / / ' 
Christo[iner E. Davis 


Deputy As.sistant Secretary 
for Ctingrcssional Affairs 
Congressional and Iniergovcnimcntal Affairs 


Enclosures 


cc: The Honorable Diana DeGcMc, Ranking Member 
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QUESTION FROM CHAIRMAN TIM MURPHY 

Ql. Please describe Department of Energy (DOE) and National Nuclear Security 
Administration’s (NNSA) implementation plans developed in response to the 
recommendations provided in the Assessment of NNSA Federal Organization and 
Oversight of Security Operations prepared by the task force led by General Sandra E. 
Finan. Include in this description the specific timetables developed and funding 
estimates for implementing the recommendations fully. 

A1 . In response to the recommendations provided in the report prepared by the task force, we 
have focused on their observation that lines of authority and responsibility were not 
clearly delineated and that contractor performance was not effectively assessed. To 
correct those problems, we have consolidated line management authority within the 
OfBce of Infiastructure and Operations (NA-00) and refocused the Office of Defense 
Nuclear Security’s (NA-70) mission on the development of strategic requirements and 
the conduct of operational security assessments. NA-70 now establishes the safeguards 
and security requirements and conducts field assessments to validate operational 
performance against those requirements. The remainder of fiscal year (FY) 2013 will be 
a transition period with full re-alignment and execution occurring in FY 2014. 


NA-70 formed a transition team to develop and implement the realignment plan. The 
transition team has developed guidance in the form of a project management plan (PMP) 
and schedule which identifies the programs, activities, and actions necessary to support 
the implementation and sustainability of this organization. 
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The PMP activities began in February 2013 with a planned completion date of July 2014. 
NA-70 leadership is fully engaged in the activities and is briefed on a regular basis by the 
transition team lead. Ongoing communication activities are conducted to ensure NA-70 
staff and NNSA leadership are kept informed of the progress as well. The increase in 
Federal FTEs in NA-70 will be offset by a $6M reduction in the support service 
contractor level of effort in NA-70. 

NA-00 has developed and is implementing a subordinate Office of Security Operations 
(NA-00-30) to provide management and operational direction of the physical security 
propam at NNSA facilities. Functions include management related to the protection 
program, physical security systems, information security, personnel security, material 
control and accountability, protective forces, technical security programs, and liaison 
with DOE’S Office of Intelligence and Counterintelligence. NA-00-30 will serve as the 
NA-00 operational element responsible for evaluations and analyses that inform security 
strategies, performance objectives, and the allocation of Field Security (FS)-20 resources 
to meet all requirements. Consistent with the Office of Inffastrueture and Operation’s 
line management authorities, NA-00-30 will establish a self-evaluation capability aimed 
at ensuring the iterative improvement of NNSA security operations. In addition, NA-00- 
30 will participate in external reviews (e.g., DOE’s Health Safety and Security, NA-70) 
of NNSA security operations as necessary and lead NA-00 efforts to identify security 
system needs, support field security activities, and share lessons learned that improve the 
overall security program. 
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NA-00 will assign program management support of the FS-20 budget activity to the 
Office of Infrastructure Resource Management (NA-00-50), to direct and oversee the 
Planning, Programming, Budgeting and Evaluation (PPBE) processes. This role includes 
budget formulation and programming activities regarding operational security. The 
proposed name change reflects the growth in scope of the office. 

The security changes being effected within NNSA will require close coordination 
between NA-70 and NA-00 to ensure that focus is maintained on the execution of the 
security mission in the field while these transitions are taking place at the Headquarters. 
We are committed to close teamwork while establishing these new roles and 
responsibilities. 
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QUESTION FROM CHAIRMAN TIM MURPHY 

Q2. Please describe DOE’s plans for developing a response to the advice and observations 
relating to DOE’s security shortcomings provided to you by Dr. Norman R. Augustine, Dr. 
Richard A. Meserve, and General C. Donald Alston. 

A2. Following the Y-12 security breach, Secretary Chu solicited the advice and 

recommendations of Dr. Augustine, Dr. Meserve and General Alston to gain an informed 
external perspective as it related to DOE security infrastructure. The externa! security 
experts conducted a strategic review of the areas that included, but were not restricted to: 
contract structure, leadership, security culture, line and independent oversight strategies, 
and federal versus contractor security forces. The lessons learned are being applied across 
the DOE/NNSA enterprise and shared with the broader nuclear security community. A 
review of these - and other security reviews - is underway by DOE headquarters to 
determine whether any policy or organizational changes that should be on the enterprise- 
wide level. 
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QUESTION FROM REPRESENTATIVE MICHAEL C. BURGESS 

Q1 . The Secretary asked three eminent individuals to evaluate DOE culture and physical 
security. Their letter reports were released to the Secretary this past December, and are 
part of the hearing record. 

Ql(a) Do you plan to produce any formal evaluation of their recommendations? 

QI(b) To their observations about security culture, what have you directed the agency to do to 
institute mechanisms and communications necessary to ensure a strong security culture? 

Al(a) Following the Y-12 security breach, Secretary Chu solicited the advice and 

recommendations of Dr. Augustine, Dr. Meserve and General Alston to gain an informed 
external perspective as it related to DOE security infiastructure. The external security 
experts conducted a strategic review of the areas that included, but were not restricted to: 
conuact structure, leadership, security culture, line and independent oversight strategies, 
and federal versus contractor security forces. The lessons learned are being applied across 
the DOE/NNSA enterprise and shared with the broader nuclear security community. A 
review of these - and other security reviews - is underway by DOE headquarters to 
determine whether any policy or organizational changes that should be on the enterprise- 
wide level. 

Al(b) We believe that it is imperative for the Department to improve its culture so that 

employees feel that they can raise issues or problems to management without fear of 
reprisal, and know that they will be part of the process for developing effective solutions. 
We have fotmd through a series of independent assessments that the Department has 
work to do to improve our existing culture, and this is true in both the safety and security 
arenas. This is a very high priority for the Department’s leadership team. 
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QUESTION FROM REPRESENTATIVE MICHAEL C. BURGESS 

Q2 In response to questioning during the hearing about terminating federal employees 
as a result of the Y-12 incident, you explained that disciplinary actions such as 
terminations are subject to due process protections. In carrying out his 
responsibilities, docs the Secretary have sufficient statutory authority to effectuate 
appropriate and timely disciplinary actions relating to personnel responsible for 
nuclear security? And, if not, please explain what additional statutory authority 
may help to ensure appropriate and timely actions may be taken. 

A2 With respect to initiating and effectuating disciplinary action, the Secretary has 
the same statutory authority afforded to heads of all other federal agencies, which 
is spelled out in the Civil Service Reform Act (CSRA) of 1978, Pub. L. No. 95- 
454, 92 Stat. 1111 (1978) (codified as amended at scattered sections of 5 U.S.C.) 
The current statutory scheme provides sufficient authority to effectuate 
appropriate and timely disciplinary actions within the Department. 
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QUESTION FROM REPRESENTATIVE MICHAEL C. BURGESS 

Q3. According to budget data supplied to the Committee, security budgets at Y- 1 2 carried over 
substantial sums from prior years that had not been expended including approximately $55 
million in fiscal Year (FY) 201 1 and $36 million in FY 2012. What was communicated from 
National Nuclear Security Administration (NNSA) to Management and Operating (M&O) 
contractors or the sites to spend less than the budget authority, and what was the basis for any 
such directions? 

A3. The Office of Defense Nuclear Security did not direct the NNSA Field Offices, or the 
M&O contractor, to spend less than the budget authority. 


7 



188 


Question for Neille Miller 


QUESTION FROM REPRESENTATIVE BEN RAY LUJAN 

Security Funding 

Q. A number of the reports observed a culture within the National Nuclear Security 

Administration (NNSA) of prioritizing cutting costs above the needs of security. Have 
Management and Operating (M&O) contractors throughout the complex been told to cut 
their security costs? Have security funding allocations been reduced in recent years before 
this incident? Has security funding been increased after the incident? 

A. No, the M&O’s have not been told to cut their security costs. 


Security funding at some sites has been either reduced or increased depending upon 
operational requirements. These requirements are determined through Defense Nuclear 
Security’s Planning Programming, Budgeting, and Evaluation (PPBE) process. The PPBE 
process is a formal, structured development of integrated, prioritized site security funding 
requirements that is validated by Defense Nuclear Security. Site security funding levels are 
determined based on historical cost date, current mission requirements, and any external 
factors that may drive funding requirements. 

Following the Y-12 incident, all sites conducted assessments of their security posture, to 
identify any immediate funding needs for security upgrades. Some sites identified one-time 
costs for upgrades to specific systems. In addition, at Y-12, a shift in the protective force 
services from a direct contract to being provided imder the M&O contractor has resulted in 
an increase of approximately $48 million in overhead costs applied to the Defense Nuclear 
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Security program. The cost model changes, however, should result in commensurate 
decreases to other Y-12 program customers. This cost increase associated with the contract 
structure change is included in outyear funding requirements at Y-12. 
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April 12, 2013 


Major General C. Donald Alston 
Retired 

United States Air Force 
1515 North Star Loop 
Cheyenne, WY 82009 

Dear General Alston, 

Thank you for appearing before the Subcommittee on Oversight and Investigations on Wednesday, 
March 13. 2013 to testify at the hearing entitled “DOE Management and Oversight of Its Nuclear Weapons 
Complex: Lessons of the Y-12 Security Failure” 

Pursuant to the Rules of the Committee on Energy and Commerce, the hearing record remains open 
for ten business days to permit Members to submit additional questions to witnesses, which are attached. 
The format of your responses to these questions .should be as follows: (1) the name of the Member whose 
question you are addressing, (2) the complete text of the question you are addressing in bold, and then (3) 
your answer to that question in plain text. 

To facilitate the printing of the hearing record, please respond to these questions by mail by the 
close of business on Friday, April, 26, 2013. Please also e-mail your responses to the Legislative Clerk in 
Word format at Kirbv.Howard@mail.house.gov . 

Thank you again for your time and effort preparing and delivering testimony before the 
Subcommittee. 


Sincerely, 

Tim Murphy 
Chairman 

Subcommittee on Oversi^t and Investigations 


cc: The Honorable Diana DeGette, Ranking Member, 
Subcommittee on Oversight and Investi^lions 


Attachments 
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OFRs submitted bv the Honorable Ben Rav Luian 
Subcommittee on Energy and Commerce 
DOE Management and Oversight of its Nuclear Weapons Complex: 
Lessons of the Y-12 Security Failure 


1. 1 have some questions related to Mr. Augustine's report that I hope the two of you 
might address given that his report was entered as part of your testimony and that your 
own investigations may have led you to have some opinions on these topics. Mr. 
Augustine wrote that "What is needed is not more inspections but better inspections." 
And that "Site office responsibility is not to manage work but to assure that work is 
managed." And finally that "headquarters personnel should not seek to involve 
themselves in the actual execution of routine work, but should use their full 
authority to ensure the significant work is in fact properly executed.” It seems to me 
Mr. Augustine was concerned about different levels of oversight not having clearly 
defined roles. Did you sec evidence for this and do you agree that what is needed is not 
more oversight but more effective oversight? 


We are not in a position to speak for Mr. Augustine, but we concur in your interpretation of the 
thrust of Mr. Augustine’s letter. We agree that an improvement of the inspection process is 
appropriate and that the differing responsibilities of the site offices and the headquarters need to 
be clearly defined. We also urge that the security capabilities of both the headquarters and field 
offices should be upgraded and that both offices should complement each other’s activities. 


2. Not all aspects of what was found at Y-12 will generalize and be applicable to all 
NNSA sites. In particular, production facilities are very different from the design and 
engineering labs. Which of the lessons from Y-12 in your opinion are readily 
generalized across all sites and which ones will require adjustment to meet the unique 
aspects or mission needs of each lab? 

The focus of our inquiry was on the structure for the management of security. We believe that 
our suggestions for clarification of authority and responsibility, for the encouragement of an 
appropriate security culture, and for improvement of federal oversight are widely applicable 
across the weapons complex. The details of the security plan may well be very different from 
site to site in light of the varying circumstances (e.g., geography, defensive strategy), the different 
types of work that are conducted, the different masses and types of materials, different 
vulnerabilities, and the like. 
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COMMITTEE ON ENERGY AND COMMERCE 
2125 Ravbubn House OmcE Busidimg 
Washington, DC 20516-6115 

nS?;£5rity 22S-2S27 


April 12, 2013 


Mr. David C. Trimble 
Director 

U.S. Government Accountability Office 
441 G Street, N.W. 

Washington, D.C. 20548 

Dear Director Trimble, 

Thank you tor appealing before the Subcommittee on Oversight and Investigations on Wednesday, 
March 1 3, 2013 to testify at the hearing entitled “DOE Management and Oversight of Its Nuclear Weapons 
Complex: Lessons of the Y-12 Security Failure.” 

Pursuant to the Rules of the Committee on Energy and Commerce, the hearing record remains open 
for ten business days to permit Members to submit additional questions to witnesses, which are attached. 
The format of your responses to these que.stions should be as follows: (1 ) the name of the Member whose 
question you are addressing, (2) the complete text of the question you are addressing in bold, and then (3) 
your answer to that question in plain text. 

To facilitate the printing of the heaiing record, please respond to these questions by mail by the 
close of business on Friday, April, 26, 2013. Please also e-mail your responses to the Legislative Clerk in 
Word format at Kirbv.Howard@maii.hQuse.gov . 

Thank you again for your time and effort preparing and delivering testimony before tlie 
Subcommittee. 


Sincerely, 

Tim Murphy 
Chairman 

Subcommittee on Oversight and Investigations 




cc; The Honorable Diana DeGetle, Ranking Member, 
Subcommittee on Oversight and Investigations 


Attachment 
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Additional Questions for the Record. House Committee 
on Energy and Commerce. Oversight and Investigations Subcommittee. Chairman Murphv 

The Honorable Tim Murphv 

1 . In its September 12 testimony, GAO credited NNSA with having an effective headquarters 
security organization that had been able to conduct security reviews, develop security 
performance measures and institute a security lessons-learned center. Can you explain why 
and how your view has changed? We noted progress between our 2003 and 2007 reviews 
of NNSA’s headquarters security organization. For example, our May 2003 report 
found that NNSA had not been fully effective in managing its safeguards and security 
program in a number of areas including deflning roles and responsibilities and 
allocating staff.' In January 2007, although we noted some similar weaknesses, we also 
found that NNSA had begun to build an effective security organization.^ Between 2007 
and 2012 we continued, through recommendation follow-up and other interactions, to 
witness positive trends in the management of NNSA security. These views are reflected 
in our September 2012 testimony.^ As our March 2013 testimony notes, however, some 
of the reviews conducted in the wake of the Y-12 incident uncovered negative and 
apparently unresolved aspects of NNSA’s security organization such as confused lines 
of authority and lack of site assessment capability NNSA recently announced plans to 
address these problems and we plan to examine them closely in our ongoing review of 
NNSA security reform for the Subcommittee. This review will be complete later this 
year. 

' Government Accountability Office (GAO), Nuclear Security: NNSA Needs to Better Manage Its Safeguards and 

Security Program, GAO-03.47 1 (Washington, D.C.: May 30, 2003) 

^ GAO, National Nuclear Security Administration: Additional Actions Needed to Improve Management of the 

Nation’s Nuclear Programs, GAO-07-36 (Washington, D.C.: Jan.l9, 2007). 

' GAO, Modernizing the Nuclear Security Enterprise: Observations on the National Nuclear Security 

Administration’s Oversight of Safety, Security, and Project Management, GAO-12-912T (Washington, D.C.: Sept. 

12 , 2012 ). 

GAO, Modernizing the Nuclear Security Enterprise: Observations on DOE ’s and NNSA 's Efforts to Enhance 

Oversight of Security, Safety, and Project and Contract Management, GAO-13-482T (Washington, D.C.: Mar. 13, 

2013). 
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Additional Questions for the Record 


2. In response to other witness testimony, would federalizing NNSA security organization, to 
include security forces, change the agency ’s security culture? We generally agree with the 
findings of the Secretary of Energy’s 2012 panel which found, among other things, that 
NNSA needed to improve its security culture. The members of the panel believed that 
federalization could serve as a catalyst for cultural change. While this is possible, our 
January 2010 report on DOE and NNSA protective forces found that federalization of 
these forces may be difficult to implement.^ For example, current contractor protective 
forces might face a loss of pay or even a loss of their jobs as these forces would have to 
compete with other applicants for the newly created federal jobs. In addition, 
according to Office of Personnel Management officials, federal retirement benefits 
would not be granted, under existing laws, for previous years of contractor service. 
Nevertheless, if DOE and NNSA cannot enact cultural change themselves, far-reaching 
and fundamental reforms such as federalization may need to be considered. 


3. How did DOE respond to your GAO work on its safety reform efforts? We made a number 
of recommendations in our April 2012 report on safety reform.^ In February 2013, 
DOE reported to us that it is developing action plans or tracking mechanisms in 
response to our recommendations. Specifically: 

• GAO Recommendation: Provide DOE sites and contractors with a plan on 
implementing the Safety Reform effort that includes results-oriented outcome 
measures. DOE reports that it is developing a comprehensive training matrix for all 
new directives and requirements, and is monitoring the implementation of all new 
directives. 


’ GAO, Nuclear Security: DOE Needs to Address Protective Forces ' Personnel System Issues, GAO-1 0-275 
(Washington, D.C.: January 29, 2010). 

^ GAO, Nuclear Safety: DOE Needs to Determine the Costs and Benefits of Its Safety Reform Effort, GAO-12-347 
(Washington, D.C.: April 20, 2012). 
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Additional Questions for the Record 

• GAO Recommendation: Ensure that the plan developed for sites and contractors 
details how the reform effort (revised directives) will help address past safety problems. 
DOE reports that it: (1) has developed a report that details activities and plans for 
implementing effective quality assurance requirements; (2) is developing a plan to 
identify activities for effective implementation of Safety Management; and, (3) is 
developing a plan to identify activities for implementing effective federal oversight. 

• GAO Recommendation: Clearly define and implement independent oversight roles. 
DOE reports that HSS is developing a memo for the Secretary to re-affirm the 
Department’s commitment to independent oversight of safety and security. 

We are currently monitoring DOE’s implementation of these activities. 
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